Vulnerability-Lookup

CVE-2011-4517 (GCVE-0-2011-4517)

Vulnerability from cvelistv5 – Published: 2011-12-15 02:00 – Updated: 2024-10-21 16:11

Summary

The jpc_crg_getparms function in libjasper/jpc/jpc_cs.c in JasPer 1.900.1 uses an incorrect data type during a certain size calculation, which allows remote attackers to trigger a heap-based buffer overflow and execute arbitrary code, or cause a denial of service (heap memory corruption), via a crafted component registration (CRG) marker segment in a JPEG2000 file.

Severity

No CVSS data available.

CWE

Assigner

certcc

References

19 references

URL	Tags
http://www.redhat.com/support/errata/RHSA-2011-18…	vendor-advisoryx_refsource_REDHAT
https://bugzilla.redhat.com/show_bug.cgi?id=747726	x_refsource_CONFIRM
http://secunia.com/advisories/47306	third-party-advisoryx_refsource_SECUNIA
http://www.ubuntu.com/usn/USN-1315-1	vendor-advisoryx_refsource_UBUNTU
http://lists.opensuse.org/opensuse-security-annou…	vendor-advisoryx_refsource_SUSE
http://www.debian.org/security/2011/dsa-2371	vendor-advisoryx_refsource_DEBIAN
http://lists.fedoraproject.org/pipermail/package-…	vendor-advisoryx_refsource_FEDORA
http://www-01.ibm.com/support/docview.wss?uid=swg…	x_refsource_CONFIRM
http://lists.fedoraproject.org/pipermail/package-…	vendor-advisoryx_refsource_FEDORA
http://secunia.com/advisories/47353	third-party-advisoryx_refsource_SECUNIA
http://www.redhat.com/support/errata/RHSA-2011-18…	vendor-advisoryx_refsource_REDHAT
http://osvdb.org/77596	vdb-entryx_refsource_OSVDB
http://www.oracle.com/technetwork/topics/security…	x_refsource_CONFIRM
http://rhn.redhat.com/errata/RHSA-2015-0698.html	vendor-advisoryx_refsource_REDHAT
https://exchange.xforce.ibmcloud.com/vulnerabilit…	vdb-entryx_refsource_XF
http://www.kb.cert.org/vuls/id/887409	third-party-advisoryx_refsource_CERT-VN
http://www.securityfocus.com/bid/50992	vdb-entryx_refsource_BID
http://secunia.com/advisories/47193	third-party-advisoryx_refsource_SECUNIA
http://www.slackware.com/security/viewer.php?l=sl…	vendor-advisoryx_refsource_SLACKWARE

Date Public

2011-12-08 00:00

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-07T00:09:18.898Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "name": "RHSA-2011:1811",
            "tags": [
              "vendor-advisory",
              "x_refsource_REDHAT",
              "x_transferred"
            ],
            "url": "http://www.redhat.com/support/errata/RHSA-2011-1811.html"
          },
          {
            "tags": [
              "x_refsource_CONFIRM",
              "x_transferred"
            ],
            "url": "https://bugzilla.redhat.com/show_bug.cgi?id=747726"
          },
          {
            "name": "47306",
            "tags": [
              "third-party-advisory",
              "x_refsource_SECUNIA",
              "x_transferred"
            ],
            "url": "http://secunia.com/advisories/47306"
          },
          {
            "name": "USN-1315-1",
            "tags": [
              "vendor-advisory",
              "x_refsource_UBUNTU",
              "x_transferred"
            ],
            "url": "http://www.ubuntu.com/usn/USN-1315-1"
          },
          {
            "name": "openSUSE-SU-2011:1317",
            "tags": [
              "vendor-advisory",
              "x_refsource_SUSE",
              "x_transferred"
            ],
            "url": "http://lists.opensuse.org/opensuse-security-announce/2011-12/msg00010.html"
          },
          {
            "name": "DSA-2371",
            "tags": [
              "vendor-advisory",
              "x_refsource_DEBIAN",
              "x_transferred"
            ],
            "url": "http://www.debian.org/security/2011/dsa-2371"
          },
          {
            "name": "FEDORA-2011-16966",
            "tags": [
              "vendor-advisory",
              "x_refsource_FEDORA",
              "x_transferred"
            ],
            "url": "http://lists.fedoraproject.org/pipermail/package-announce/2011-December/071458.html"
          },
          {
            "tags": [
              "x_refsource_CONFIRM",
              "x_transferred"
            ],
            "url": "http://www-01.ibm.com/support/docview.wss?uid=swg21660640"
          },
          {
            "name": "FEDORA-2011-16955",
            "tags": [
              "vendor-advisory",
              "x_refsource_FEDORA",
              "x_transferred"
            ],
            "url": "http://lists.fedoraproject.org/pipermail/package-announce/2012-January/071561.html"
          },
          {
            "name": "47353",
            "tags": [
              "third-party-advisory",
              "x_refsource_SECUNIA",
              "x_transferred"
            ],
            "url": "http://secunia.com/advisories/47353"
          },
          {
            "name": "RHSA-2011:1807",
            "tags": [
              "vendor-advisory",
              "x_refsource_REDHAT",
              "x_transferred"
            ],
            "url": "http://www.redhat.com/support/errata/RHSA-2011-1807.html"
          },
          {
            "name": "77596",
            "tags": [
              "vdb-entry",
              "x_refsource_OSVDB",
              "x_transferred"
            ],
            "url": "http://osvdb.org/77596"
          },
          {
            "tags": [
              "x_refsource_CONFIRM",
              "x_transferred"
            ],
            "url": "http://www.oracle.com/technetwork/topics/security/cpujan2012-366304.html"
          },
          {
            "name": "RHSA-2015:0698",
            "tags": [
              "vendor-advisory",
              "x_refsource_REDHAT",
              "x_transferred"
            ],
            "url": "http://rhn.redhat.com/errata/RHSA-2015-0698.html"
          },
          {
            "name": "jasper-jpccrggetparms-bo(71701)",
            "tags": [
              "vdb-entry",
              "x_refsource_XF",
              "x_transferred"
            ],
            "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/71701"
          },
          {
            "name": "VU#887409",
            "tags": [
              "third-party-advisory",
              "x_refsource_CERT-VN",
              "x_transferred"
            ],
            "url": "http://www.kb.cert.org/vuls/id/887409"
          },
          {
            "name": "50992",
            "tags": [
              "vdb-entry",
              "x_refsource_BID",
              "x_transferred"
            ],
            "url": "http://www.securityfocus.com/bid/50992"
          },
          {
            "name": "47193",
            "tags": [
              "third-party-advisory",
              "x_refsource_SECUNIA",
              "x_transferred"
            ],
            "url": "http://secunia.com/advisories/47193"
          },
          {
            "name": "SSA:2015-302-02",
            "tags": [
              "vendor-advisory",
              "x_refsource_SLACKWARE",
              "x_transferred"
            ],
            "url": "http://www.slackware.com/security/viewer.php?l=slackware-security\u0026y=2015\u0026m=slackware-security.538606"
          }
        ],
        "title": "CVE Program Container"
      },
      {
        "metrics": [
          {
            "other": {
              "content": {
                "id": "CVE-2011-4517",
                "options": [
                  {
                    "Exploitation": "none"
                  },
                  {
                    "Automatable": "no"
                  },
                  {
                    "Technical Impact": "partial"
                  }
                ],
                "role": "CISA Coordinator",
                "timestamp": "2024-10-21T16:11:47.370512Z",
                "version": "2.0.3"
              },
              "type": "ssvc"
            }
          }
        ],
        "providerMetadata": {
          "dateUpdated": "2024-10-21T16:11:56.211Z",
          "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
          "shortName": "CISA-ADP"
        },
        "title": "CISA ADP Vulnrichment"
      }
    ],
    "cna": {
      "affected": [
        {
          "product": "n/a",
          "vendor": "n/a",
          "versions": [
            {
              "status": "affected",
              "version": "n/a"
            }
          ]
        }
      ],
      "datePublic": "2011-12-08T00:00:00.000Z",
      "descriptions": [
        {
          "lang": "en",
          "value": "The jpc_crg_getparms function in libjasper/jpc/jpc_cs.c in JasPer 1.900.1 uses an incorrect data type during a certain size calculation, which allows remote attackers to trigger a heap-based buffer overflow and execute arbitrary code, or cause a denial of service (heap memory corruption), via a crafted component registration (CRG) marker segment in a JPEG2000 file."
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "description": "n/a",
              "lang": "en",
              "type": "text"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2017-08-28T12:57:01.000Z",
        "orgId": "37e5125f-f79b-445b-8fad-9564f167944b",
        "shortName": "certcc"
      },
      "references": [
        {
          "name": "RHSA-2011:1811",
          "tags": [
            "vendor-advisory",
            "x_refsource_REDHAT"
          ],
          "url": "http://www.redhat.com/support/errata/RHSA-2011-1811.html"
        },
        {
          "tags": [
            "x_refsource_CONFIRM"
          ],
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=747726"
        },
        {
          "name": "47306",
          "tags": [
            "third-party-advisory",
            "x_refsource_SECUNIA"
          ],
          "url": "http://secunia.com/advisories/47306"
        },
        {
          "name": "USN-1315-1",
          "tags": [
            "vendor-advisory",
            "x_refsource_UBUNTU"
          ],
          "url": "http://www.ubuntu.com/usn/USN-1315-1"
        },
        {
          "name": "openSUSE-SU-2011:1317",
          "tags": [
            "vendor-advisory",
            "x_refsource_SUSE"
          ],
          "url": "http://lists.opensuse.org/opensuse-security-announce/2011-12/msg00010.html"
        },
        {
          "name": "DSA-2371",
          "tags": [
            "vendor-advisory",
            "x_refsource_DEBIAN"
          ],
          "url": "http://www.debian.org/security/2011/dsa-2371"
        },
        {
          "name": "FEDORA-2011-16966",
          "tags": [
            "vendor-advisory",
            "x_refsource_FEDORA"
          ],
          "url": "http://lists.fedoraproject.org/pipermail/package-announce/2011-December/071458.html"
        },
        {
          "tags": [
            "x_refsource_CONFIRM"
          ],
          "url": "http://www-01.ibm.com/support/docview.wss?uid=swg21660640"
        },
        {
          "name": "FEDORA-2011-16955",
          "tags": [
            "vendor-advisory",
            "x_refsource_FEDORA"
          ],
          "url": "http://lists.fedoraproject.org/pipermail/package-announce/2012-January/071561.html"
        },
        {
          "name": "47353",
          "tags": [
            "third-party-advisory",
            "x_refsource_SECUNIA"
          ],
          "url": "http://secunia.com/advisories/47353"
        },
        {
          "name": "RHSA-2011:1807",
          "tags": [
            "vendor-advisory",
            "x_refsource_REDHAT"
          ],
          "url": "http://www.redhat.com/support/errata/RHSA-2011-1807.html"
        },
        {
          "name": "77596",
          "tags": [
            "vdb-entry",
            "x_refsource_OSVDB"
          ],
          "url": "http://osvdb.org/77596"
        },
        {
          "tags": [
            "x_refsource_CONFIRM"
          ],
          "url": "http://www.oracle.com/technetwork/topics/security/cpujan2012-366304.html"
        },
        {
          "name": "RHSA-2015:0698",
          "tags": [
            "vendor-advisory",
            "x_refsource_REDHAT"
          ],
          "url": "http://rhn.redhat.com/errata/RHSA-2015-0698.html"
        },
        {
          "name": "jasper-jpccrggetparms-bo(71701)",
          "tags": [
            "vdb-entry",
            "x_refsource_XF"
          ],
          "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/71701"
        },
        {
          "name": "VU#887409",
          "tags": [
            "third-party-advisory",
            "x_refsource_CERT-VN"
          ],
          "url": "http://www.kb.cert.org/vuls/id/887409"
        },
        {
          "name": "50992",
          "tags": [
            "vdb-entry",
            "x_refsource_BID"
          ],
          "url": "http://www.securityfocus.com/bid/50992"
        },
        {
          "name": "47193",
          "tags": [
            "third-party-advisory",
            "x_refsource_SECUNIA"
          ],
          "url": "http://secunia.com/advisories/47193"
        },
        {
          "name": "SSA:2015-302-02",
          "tags": [
            "vendor-advisory",
            "x_refsource_SLACKWARE"
          ],
          "url": "http://www.slackware.com/security/viewer.php?l=slackware-security\u0026y=2015\u0026m=slackware-security.538606"
        }
      ],
      "x_legacyV4Record": {
        "CVE_data_meta": {
          "ASSIGNER": "cert@cert.org",
          "ID": "CVE-2011-4517",
          "STATE": "PUBLIC"
        },
        "affects": {
          "vendor": {
            "vendor_data": [
              {
                "product": {
                  "product_data": [
                    {
                      "product_name": "n/a",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "n/a"
                          }
                        ]
                      }
                    }
                  ]
                },
                "vendor_name": "n/a"
              }
            ]
          }
        },
        "data_format": "MITRE",
        "data_type": "CVE",
        "data_version": "4.0",
        "description": {
          "description_data": [
            {
              "lang": "eng",
              "value": "The jpc_crg_getparms function in libjasper/jpc/jpc_cs.c in JasPer 1.900.1 uses an incorrect data type during a certain size calculation, which allows remote attackers to trigger a heap-based buffer overflow and execute arbitrary code, or cause a denial of service (heap memory corruption), via a crafted component registration (CRG) marker segment in a JPEG2000 file."
            }
          ]
        },
        "problemtype": {
          "problemtype_data": [
            {
              "description": [
                {
                  "lang": "eng",
                  "value": "n/a"
                }
              ]
            }
          ]
        },
        "references": {
          "reference_data": [
            {
              "name": "RHSA-2011:1811",
              "refsource": "REDHAT",
              "url": "http://www.redhat.com/support/errata/RHSA-2011-1811.html"
            },
            {
              "name": "https://bugzilla.redhat.com/show_bug.cgi?id=747726",
              "refsource": "CONFIRM",
              "url": "https://bugzilla.redhat.com/show_bug.cgi?id=747726"
            },
            {
              "name": "47306",
              "refsource": "SECUNIA",
              "url": "http://secunia.com/advisories/47306"
            },
            {
              "name": "USN-1315-1",
              "refsource": "UBUNTU",
              "url": "http://www.ubuntu.com/usn/USN-1315-1"
            },
            {
              "name": "openSUSE-SU-2011:1317",
              "refsource": "SUSE",
              "url": "http://lists.opensuse.org/opensuse-security-announce/2011-12/msg00010.html"
            },
            {
              "name": "DSA-2371",
              "refsource": "DEBIAN",
              "url": "http://www.debian.org/security/2011/dsa-2371"
            },
            {
              "name": "FEDORA-2011-16966",
              "refsource": "FEDORA",
              "url": "http://lists.fedoraproject.org/pipermail/package-announce/2011-December/071458.html"
            },
            {
              "name": "http://www-01.ibm.com/support/docview.wss?uid=swg21660640",
              "refsource": "CONFIRM",
              "url": "http://www-01.ibm.com/support/docview.wss?uid=swg21660640"
            },
            {
              "name": "FEDORA-2011-16955",
              "refsource": "FEDORA",
              "url": "http://lists.fedoraproject.org/pipermail/package-announce/2012-January/071561.html"
            },
            {
              "name": "47353",
              "refsource": "SECUNIA",
              "url": "http://secunia.com/advisories/47353"
            },
            {
              "name": "RHSA-2011:1807",
              "refsource": "REDHAT",
              "url": "http://www.redhat.com/support/errata/RHSA-2011-1807.html"
            },
            {
              "name": "77596",
              "refsource": "OSVDB",
              "url": "http://osvdb.org/77596"
            },
            {
              "name": "http://www.oracle.com/technetwork/topics/security/cpujan2012-366304.html",
              "refsource": "CONFIRM",
              "url": "http://www.oracle.com/technetwork/topics/security/cpujan2012-366304.html"
            },
            {
              "name": "RHSA-2015:0698",
              "refsource": "REDHAT",
              "url": "http://rhn.redhat.com/errata/RHSA-2015-0698.html"
            },
            {
              "name": "jasper-jpccrggetparms-bo(71701)",
              "refsource": "XF",
              "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/71701"
            },
            {
              "name": "VU#887409",
              "refsource": "CERT-VN",
              "url": "http://www.kb.cert.org/vuls/id/887409"
            },
            {
              "name": "50992",
              "refsource": "BID",
              "url": "http://www.securityfocus.com/bid/50992"
            },
            {
              "name": "47193",
              "refsource": "SECUNIA",
              "url": "http://secunia.com/advisories/47193"
            },
            {
              "name": "SSA:2015-302-02",
              "refsource": "SLACKWARE",
              "url": "http://www.slackware.com/security/viewer.php?l=slackware-security\u0026y=2015\u0026m=slackware-security.538606"
            }
          ]
        }
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "37e5125f-f79b-445b-8fad-9564f167944b",
    "assignerShortName": "certcc",
    "cveId": "CVE-2011-4517",
    "datePublished": "2011-12-15T02:00:00.000Z",
    "dateReserved": "2011-11-22T00:00:00.000Z",
    "dateUpdated": "2024-10-21T16:11:56.211Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1",
  "vulnerability-lookup:meta": {
    "epss": {
      "cve": "CVE-2011-4517",
      "date": "2026-05-27",
      "epss": "0.4213",
      "percentile": "0.97497"
    },
    "fkie_nvd": {
      "configurations": "[{\"nodes\": [{\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:jasper_project:jasper:1.900.1:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"79C699BE-8585-4A07-88AE-E17CF17D92CD\"}]}]}, {\"nodes\": [{\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:oracle:outside_in_technology:8.3.5:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"64AA8532-9055-4A9B-BC52-B6D0EDAB8D10\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:oracle:outside_in_technology:8.3.7:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"506DA542-BD41-4102-A15E-481C81A0AB04\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:o:canonical:ubuntu_linux:10.04:*:*:*:-:*:*:*\", \"matchCriteriaId\": \"01EDA41C-6B2E-49AF-B503-EB3882265C11\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:o:canonical:ubuntu_linux:10.10:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"87614B58-24AB-49FB-9C84-E8DDBA16353B\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:o:canonical:ubuntu_linux:11.04:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"EF49D26F-142E-468B-87C1-BABEA445255C\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:o:canonical:ubuntu_linux:11.10:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"E4174F4F-149E-41A6-BBCC-D01114C05F38\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:o:debian:debian_linux:6.0:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"036E8A89-7A16-411F-9D31-676313BB7244\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:o:fedoraproject:fedora:15:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"9396E005-22D8-4342-9323-C7DEA379191D\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:o:fedoraproject:fedora:16:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"706C6399-CAD1-46E3-87A2-8DFE2CF497ED\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:o:suse:linux_enterprise_desktop:11:sp1:*:*:*:*:*:*\", \"matchCriteriaId\": \"60FBDD82-691C-4D9D-B71B-F9AFF6931B53\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:o:suse:linux_enterprise_server:11:sp1:*:*:*:-:*:*\", \"matchCriteriaId\": \"A44C3422-0D42-473E-ABB4-279D7494EE2F\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:o:suse:linux_enterprise_server:11:sp1:*:*:*:vmware:*:*\", \"matchCriteriaId\": \"A6B7CDCA-6F39-4113-B5D3-3AA9D7F3D809\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:o:suse:linux_enterprise_software_development_kit:11:sp1:*:*:*:*:*:*\", \"matchCriteriaId\": \"E8C91701-DF37-4F7B-AB9A-B1BFDB4991F8\"}]}]}, {\"nodes\": [{\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": true, \"criteria\": \"cpe:2.3:o:redhat:enterprise_linux_desktop:4:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"D986CAD0-F4E0-4F97-B240-8967CD4466FB\"}]}]}]",
      "descriptions": "[{\"lang\": \"en\", \"value\": \"The jpc_crg_getparms function in libjasper/jpc/jpc_cs.c in JasPer 1.900.1 uses an incorrect data type during a certain size calculation, which allows remote attackers to trigger a heap-based buffer overflow and execute arbitrary code, or cause a denial of service (heap memory corruption), via a crafted component registration (CRG) marker segment in a JPEG2000 file.\"}, {\"lang\": \"es\", \"value\": \"La funci\\u00f3n jpc_crg_getparms de libjasper/jpc/jpc_cs.c de JasPer 1.900.1 utiliza un tipo de datos incorrecto durante un c\\u00e1lculo determinado de tama\\u00f1o, lo que permite a atacantes remotos provocar un desbordamiento de buffer de memoria din\\u00e1mica y ejecutar c\\u00f3digo arbitrario, o provocar una denegaci\\u00f3n de servicio (corrupci\\u00f3n de memoria din\\u00e1mica), a trav\\u00e9s de un archivo JPEG2000 mal formado.\"}]",
      "id": "CVE-2011-4517",
      "lastModified": "2024-11-21T01:32:27.893",
      "metrics": "{\"cvssMetricV2\": [{\"source\": \"nvd@nist.gov\", \"type\": \"Primary\", \"cvssData\": {\"version\": \"2.0\", \"vectorString\": \"AV:N/AC:M/Au:N/C:P/I:P/A:P\", \"baseScore\": 6.8, \"accessVector\": \"NETWORK\", \"accessComplexity\": \"MEDIUM\", \"authentication\": \"NONE\", \"confidentialityImpact\": \"PARTIAL\", \"integrityImpact\": \"PARTIAL\", \"availabilityImpact\": \"PARTIAL\"}, \"baseSeverity\": \"MEDIUM\", \"exploitabilityScore\": 8.6, \"impactScore\": 6.4, \"acInsufInfo\": false, \"obtainAllPrivilege\": false, \"obtainUserPrivilege\": false, \"obtainOtherPrivilege\": false, \"userInteractionRequired\": true}]}",
      "published": "2011-12-15T03:57:34.277",
      "references": "[{\"url\": \"http://lists.fedoraproject.org/pipermail/package-announce/2011-December/071458.html\", \"source\": \"cret@cert.org\", \"tags\": [\"Mailing List\", \"Third Party Advisory\"]}, {\"url\": \"http://lists.fedoraproject.org/pipermail/package-announce/2012-January/071561.html\", \"source\": \"cret@cert.org\", \"tags\": [\"Mailing List\", \"Third Party Advisory\"]}, {\"url\": \"http://lists.opensuse.org/opensuse-security-announce/2011-12/msg00010.html\", \"source\": \"cret@cert.org\", \"tags\": [\"Mailing List\", \"Third Party Advisory\"]}, {\"url\": \"http://osvdb.org/77596\", \"source\": \"cret@cert.org\", \"tags\": [\"Broken Link\"]}, {\"url\": \"http://rhn.redhat.com/errata/RHSA-2015-0698.html\", \"source\": \"cret@cert.org\", \"tags\": [\"Third Party Advisory\"]}, {\"url\": \"http://secunia.com/advisories/47193\", \"source\": \"cret@cert.org\", \"tags\": [\"Not Applicable\"]}, {\"url\": \"http://secunia.com/advisories/47306\", \"source\": \"cret@cert.org\", \"tags\": [\"Not Applicable\"]}, {\"url\": \"http://secunia.com/advisories/47353\", \"source\": \"cret@cert.org\", \"tags\": [\"Not Applicable\"]}, {\"url\": \"http://www-01.ibm.com/support/docview.wss?uid=swg21660640\", \"source\": \"cret@cert.org\", \"tags\": [\"Broken Link\"]}, {\"url\": \"http://www.debian.org/security/2011/dsa-2371\", \"source\": \"cret@cert.org\", \"tags\": [\"Third Party Advisory\"]}, {\"url\": \"http://www.kb.cert.org/vuls/id/887409\", \"source\": \"cret@cert.org\", \"tags\": [\"Third Party Advisory\", \"US Government Resource\"]}, {\"url\": \"http://www.oracle.com/technetwork/topics/security/cpujan2012-366304.html\", \"source\": \"cret@cert.org\", \"tags\": [\"Third Party Advisory\"]}, {\"url\": \"http://www.redhat.com/support/errata/RHSA-2011-1807.html\", \"source\": \"cret@cert.org\", \"tags\": [\"Third Party Advisory\"]}, {\"url\": \"http://www.redhat.com/support/errata/RHSA-2011-1811.html\", \"source\": \"cret@cert.org\", \"tags\": [\"Third Party Advisory\"]}, {\"url\": \"http://www.securityfocus.com/bid/50992\", \"source\": \"cret@cert.org\", \"tags\": [\"Broken Link\", \"VDB Entry\"]}, {\"url\": \"http://www.slackware.com/security/viewer.php?l=slackware-security\u0026y=2015\u0026m=slackware-security.538606\", \"source\": \"cret@cert.org\", \"tags\": [\"Release Notes\"]}, {\"url\": \"http://www.ubuntu.com/usn/USN-1315-1\", \"source\": \"cret@cert.org\", \"tags\": [\"Third Party Advisory\"]}, {\"url\": \"https://bugzilla.redhat.com/show_bug.cgi?id=747726\", \"source\": \"cret@cert.org\", \"tags\": [\"Issue Tracking\"]}, {\"url\": \"https://exchange.xforce.ibmcloud.com/vulnerabilities/71701\", \"source\": \"cret@cert.org\", \"tags\": [\"Third Party Advisory\", \"VDB Entry\"]}, {\"url\": \"http://lists.fedoraproject.org/pipermail/package-announce/2011-December/071458.html\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Mailing List\", \"Third Party Advisory\"]}, {\"url\": \"http://lists.fedoraproject.org/pipermail/package-announce/2012-January/071561.html\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Mailing List\", \"Third Party Advisory\"]}, {\"url\": \"http://lists.opensuse.org/opensuse-security-announce/2011-12/msg00010.html\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Mailing List\", \"Third Party Advisory\"]}, {\"url\": \"http://osvdb.org/77596\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Broken Link\"]}, {\"url\": \"http://rhn.redhat.com/errata/RHSA-2015-0698.html\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Third Party Advisory\"]}, {\"url\": \"http://secunia.com/advisories/47193\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Not Applicable\"]}, {\"url\": \"http://secunia.com/advisories/47306\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Not Applicable\"]}, {\"url\": \"http://secunia.com/advisories/47353\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Not Applicable\"]}, {\"url\": \"http://www-01.ibm.com/support/docview.wss?uid=swg21660640\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Broken Link\"]}, {\"url\": \"http://www.debian.org/security/2011/dsa-2371\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Third Party Advisory\"]}, {\"url\": \"http://www.kb.cert.org/vuls/id/887409\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Third Party Advisory\", \"US Government Resource\"]}, {\"url\": \"http://www.oracle.com/technetwork/topics/security/cpujan2012-366304.html\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Third Party Advisory\"]}, {\"url\": \"http://www.redhat.com/support/errata/RHSA-2011-1807.html\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Third Party Advisory\"]}, {\"url\": \"http://www.redhat.com/support/errata/RHSA-2011-1811.html\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Third Party Advisory\"]}, {\"url\": \"http://www.securityfocus.com/bid/50992\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Broken Link\", \"VDB Entry\"]}, {\"url\": \"http://www.slackware.com/security/viewer.php?l=slackware-security\u0026y=2015\u0026m=slackware-security.538606\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Release Notes\"]}, {\"url\": \"http://www.ubuntu.com/usn/USN-1315-1\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Third Party Advisory\"]}, {\"url\": \"https://bugzilla.redhat.com/show_bug.cgi?id=747726\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Issue Tracking\"]}, {\"url\": \"https://exchange.xforce.ibmcloud.com/vulnerabilities/71701\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Third Party Advisory\", \"VDB Entry\"]}]",
      "sourceIdentifier": "cret@cert.org",
      "vulnStatus": "Modified",
      "weaknesses": "[{\"source\": \"nvd@nist.gov\", \"type\": \"Primary\", \"description\": [{\"lang\": \"en\", \"value\": \"CWE-787\"}]}]"
    },
    "nvd": "{\"cve\":{\"id\":\"CVE-2011-4517\",\"sourceIdentifier\":\"cret@cert.org\",\"published\":\"2011-12-15T03:57:34.277\",\"lastModified\":\"2026-04-29T01:13:23.040\",\"vulnStatus\":\"Modified\",\"cveTags\":[],\"descriptions\":[{\"lang\":\"en\",\"value\":\"The jpc_crg_getparms function in libjasper/jpc/jpc_cs.c in JasPer 1.900.1 uses an incorrect data type during a certain size calculation, which allows remote attackers to trigger a heap-based buffer overflow and execute arbitrary code, or cause a denial of service (heap memory corruption), via a crafted component registration (CRG) marker segment in a JPEG2000 file.\"},{\"lang\":\"es\",\"value\":\"La funci\u00f3n jpc_crg_getparms de libjasper/jpc/jpc_cs.c de JasPer 1.900.1 utiliza un tipo de datos incorrecto durante un c\u00e1lculo determinado de tama\u00f1o, lo que permite a atacantes remotos provocar un desbordamiento de buffer de memoria din\u00e1mica y ejecutar c\u00f3digo arbitrario, o provocar una denegaci\u00f3n de servicio (corrupci\u00f3n de memoria din\u00e1mica), a trav\u00e9s de un archivo JPEG2000 mal formado.\"}],\"metrics\":{\"cvssMetricV2\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"cvssData\":{\"version\":\"2.0\",\"vectorString\":\"AV:N/AC:M/Au:N/C:P/I:P/A:P\",\"baseScore\":6.8,\"accessVector\":\"NETWORK\",\"accessComplexity\":\"MEDIUM\",\"authentication\":\"NONE\",\"confidentialityImpact\":\"PARTIAL\",\"integrityImpact\":\"PARTIAL\",\"availabilityImpact\":\"PARTIAL\"},\"baseSeverity\":\"MEDIUM\",\"exploitabilityScore\":8.6,\"impactScore\":6.4,\"acInsufInfo\":false,\"obtainAllPrivilege\":false,\"obtainUserPrivilege\":false,\"obtainOtherPrivilege\":false,\"userInteractionRequired\":true}]},\"weaknesses\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"description\":[{\"lang\":\"en\",\"value\":\"CWE-787\"}]}],\"configurations\":[{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:jasper_project:jasper:1.900.1:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"79C699BE-8585-4A07-88AE-E17CF17D92CD\"}]}]},{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:outside_in_technology:8.3.5:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"64AA8532-9055-4A9B-BC52-B6D0EDAB8D10\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:outside_in_technology:8.3.7:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"506DA542-BD41-4102-A15E-481C81A0AB04\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:canonical:ubuntu_linux:10.04:*:*:*:-:*:*:*\",\"matchCriteriaId\":\"01EDA41C-6B2E-49AF-B503-EB3882265C11\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:canonical:ubuntu_linux:10.10:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"87614B58-24AB-49FB-9C84-E8DDBA16353B\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:canonical:ubuntu_linux:11.04:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"EF49D26F-142E-468B-87C1-BABEA445255C\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:canonical:ubuntu_linux:11.10:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"E4174F4F-149E-41A6-BBCC-D01114C05F38\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:debian:debian_linux:6.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"036E8A89-7A16-411F-9D31-676313BB7244\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:fedoraproject:fedora:15:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"9396E005-22D8-4342-9323-C7DEA379191D\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:fedoraproject:fedora:16:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"706C6399-CAD1-46E3-87A2-8DFE2CF497ED\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:suse:linux_enterprise_desktop:11:sp1:*:*:*:*:*:*\",\"matchCriteriaId\":\"60FBDD82-691C-4D9D-B71B-F9AFF6931B53\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:suse:linux_enterprise_server:11:sp1:*:*:*:-:*:*\",\"matchCriteriaId\":\"A44C3422-0D42-473E-ABB4-279D7494EE2F\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:suse:linux_enterprise_server:11:sp1:*:*:*:vmware:*:*\",\"matchCriteriaId\":\"A6B7CDCA-6F39-4113-B5D3-3AA9D7F3D809\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:suse:linux_enterprise_software_development_kit:11:sp1:*:*:*:*:*:*\",\"matchCriteriaId\":\"E8C91701-DF37-4F7B-AB9A-B1BFDB4991F8\"}]}]},{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:redhat:enterprise_linux_desktop:4:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"D986CAD0-F4E0-4F97-B240-8967CD4466FB\"}]}]}],\"references\":[{\"url\":\"http://lists.fedoraproject.org/pipermail/package-announce/2011-December/071458.html\",\"source\":\"cret@cert.org\",\"tags\":[\"Mailing List\",\"Third Party Advisory\"]},{\"url\":\"http://lists.fedoraproject.org/pipermail/package-announce/2012-January/071561.html\",\"source\":\"cret@cert.org\",\"tags\":[\"Mailing List\",\"Third Party Advisory\"]},{\"url\":\"http://lists.opensuse.org/opensuse-security-announce/2011-12/msg00010.html\",\"source\":\"cret@cert.org\",\"tags\":[\"Mailing List\",\"Third Party Advisory\"]},{\"url\":\"http://osvdb.org/77596\",\"source\":\"cret@cert.org\",\"tags\":[\"Broken Link\"]},{\"url\":\"http://rhn.redhat.com/errata/RHSA-2015-0698.html\",\"source\":\"cret@cert.org\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"http://secunia.com/advisories/47193\",\"source\":\"cret@cert.org\",\"tags\":[\"Not Applicable\"]},{\"url\":\"http://secunia.com/advisories/47306\",\"source\":\"cret@cert.org\",\"tags\":[\"Not Applicable\"]},{\"url\":\"http://secunia.com/advisories/47353\",\"source\":\"cret@cert.org\",\"tags\":[\"Not Applicable\"]},{\"url\":\"http://www-01.ibm.com/support/docview.wss?uid=swg21660640\",\"source\":\"cret@cert.org\",\"tags\":[\"Broken Link\"]},{\"url\":\"http://www.debian.org/security/2011/dsa-2371\",\"source\":\"cret@cert.org\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"http://www.kb.cert.org/vuls/id/887409\",\"source\":\"cret@cert.org\",\"tags\":[\"Third Party Advisory\",\"US Government Resource\"]},{\"url\":\"http://www.oracle.com/technetwork/topics/security/cpujan2012-366304.html\",\"source\":\"cret@cert.org\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"http://www.redhat.com/support/errata/RHSA-2011-1807.html\",\"source\":\"cret@cert.org\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"http://www.redhat.com/support/errata/RHSA-2011-1811.html\",\"source\":\"cret@cert.org\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"http://www.securityfocus.com/bid/50992\",\"source\":\"cret@cert.org\",\"tags\":[\"Broken Link\",\"VDB Entry\"]},{\"url\":\"http://www.slackware.com/security/viewer.php?l=slackware-security\u0026y=2015\u0026m=slackware-security.538606\",\"source\":\"cret@cert.org\",\"tags\":[\"Release Notes\"]},{\"url\":\"http://www.ubuntu.com/usn/USN-1315-1\",\"source\":\"cret@cert.org\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://bugzilla.redhat.com/show_bug.cgi?id=747726\",\"source\":\"cret@cert.org\",\"tags\":[\"Issue Tracking\"]},{\"url\":\"https://exchange.xforce.ibmcloud.com/vulnerabilities/71701\",\"source\":\"cret@cert.org\",\"tags\":[\"Third Party Advisory\",\"VDB Entry\"]},{\"url\":\"http://lists.fedoraproject.org/pipermail/package-announce/2011-December/071458.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Mailing List\",\"Third Party Advisory\"]},{\"url\":\"http://lists.fedoraproject.org/pipermail/package-announce/2012-January/071561.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Mailing List\",\"Third Party Advisory\"]},{\"url\":\"http://lists.opensuse.org/opensuse-security-announce/2011-12/msg00010.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Mailing List\",\"Third Party Advisory\"]},{\"url\":\"http://osvdb.org/77596\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Broken Link\"]},{\"url\":\"http://rhn.redhat.com/errata/RHSA-2015-0698.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"http://secunia.com/advisories/47193\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Not Applicable\"]},{\"url\":\"http://secunia.com/advisories/47306\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Not Applicable\"]},{\"url\":\"http://secunia.com/advisories/47353\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Not Applicable\"]},{\"url\":\"http://www-01.ibm.com/support/docview.wss?uid=swg21660640\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Broken Link\"]},{\"url\":\"http://www.debian.org/security/2011/dsa-2371\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"http://www.kb.cert.org/vuls/id/887409\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\",\"US Government Resource\"]},{\"url\":\"http://www.oracle.com/technetwork/topics/security/cpujan2012-366304.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"http://www.redhat.com/support/errata/RHSA-2011-1807.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"http://www.redhat.com/support/errata/RHSA-2011-1811.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"http://www.securityfocus.com/bid/50992\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Broken Link\",\"VDB Entry\"]},{\"url\":\"http://www.slackware.com/security/viewer.php?l=slackware-security\u0026y=2015\u0026m=slackware-security.538606\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Release Notes\"]},{\"url\":\"http://www.ubuntu.com/usn/USN-1315-1\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://bugzilla.redhat.com/show_bug.cgi?id=747726\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Issue Tracking\"]},{\"url\":\"https://exchange.xforce.ibmcloud.com/vulnerabilities/71701\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\",\"VDB Entry\"]}]}}",
    "vulnrichment": {
      "containers": "{\"adp\": [{\"title\": \"CVE Program Container\", \"references\": [{\"url\": \"http://www.redhat.com/support/errata/RHSA-2011-1811.html\", \"name\": \"RHSA-2011:1811\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\", \"x_transferred\"]}, {\"url\": \"https://bugzilla.redhat.com/show_bug.cgi?id=747726\", \"tags\": [\"x_refsource_CONFIRM\", \"x_transferred\"]}, {\"url\": \"http://secunia.com/advisories/47306\", \"name\": \"47306\", \"tags\": [\"third-party-advisory\", \"x_refsource_SECUNIA\", \"x_transferred\"]}, {\"url\": \"http://www.ubuntu.com/usn/USN-1315-1\", \"name\": \"USN-1315-1\", \"tags\": [\"vendor-advisory\", \"x_refsource_UBUNTU\", \"x_transferred\"]}, {\"url\": \"http://lists.opensuse.org/opensuse-security-announce/2011-12/msg00010.html\", \"name\": \"openSUSE-SU-2011:1317\", \"tags\": [\"vendor-advisory\", \"x_refsource_SUSE\", \"x_transferred\"]}, {\"url\": \"http://www.debian.org/security/2011/dsa-2371\", \"name\": \"DSA-2371\", \"tags\": [\"vendor-advisory\", \"x_refsource_DEBIAN\", \"x_transferred\"]}, {\"url\": \"http://lists.fedoraproject.org/pipermail/package-announce/2011-December/071458.html\", \"name\": \"FEDORA-2011-16966\", \"tags\": [\"vendor-advisory\", \"x_refsource_FEDORA\", \"x_transferred\"]}, {\"url\": \"http://www-01.ibm.com/support/docview.wss?uid=swg21660640\", \"tags\": [\"x_refsource_CONFIRM\", \"x_transferred\"]}, {\"url\": \"http://lists.fedoraproject.org/pipermail/package-announce/2012-January/071561.html\", \"name\": \"FEDORA-2011-16955\", \"tags\": [\"vendor-advisory\", \"x_refsource_FEDORA\", \"x_transferred\"]}, {\"url\": \"http://secunia.com/advisories/47353\", \"name\": \"47353\", \"tags\": [\"third-party-advisory\", \"x_refsource_SECUNIA\", \"x_transferred\"]}, {\"url\": \"http://www.redhat.com/support/errata/RHSA-2011-1807.html\", \"name\": \"RHSA-2011:1807\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\", \"x_transferred\"]}, {\"url\": \"http://osvdb.org/77596\", \"name\": \"77596\", \"tags\": [\"vdb-entry\", \"x_refsource_OSVDB\", \"x_transferred\"]}, {\"url\": \"http://www.oracle.com/technetwork/topics/security/cpujan2012-366304.html\", \"tags\": [\"x_refsource_CONFIRM\", \"x_transferred\"]}, {\"url\": \"http://rhn.redhat.com/errata/RHSA-2015-0698.html\", \"name\": \"RHSA-2015:0698\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\", \"x_transferred\"]}, {\"url\": \"https://exchange.xforce.ibmcloud.com/vulnerabilities/71701\", \"name\": \"jasper-jpccrggetparms-bo(71701)\", \"tags\": [\"vdb-entry\", \"x_refsource_XF\", \"x_transferred\"]}, {\"url\": \"http://www.kb.cert.org/vuls/id/887409\", \"name\": \"VU#887409\", \"tags\": [\"third-party-advisory\", \"x_refsource_CERT-VN\", \"x_transferred\"]}, {\"url\": \"http://www.securityfocus.com/bid/50992\", \"name\": \"50992\", \"tags\": [\"vdb-entry\", \"x_refsource_BID\", \"x_transferred\"]}, {\"url\": \"http://secunia.com/advisories/47193\", \"name\": \"47193\", \"tags\": [\"third-party-advisory\", \"x_refsource_SECUNIA\", \"x_transferred\"]}, {\"url\": \"http://www.slackware.com/security/viewer.php?l=slackware-security\u0026y=2015\u0026m=slackware-security.538606\", \"name\": \"SSA:2015-302-02\", \"tags\": [\"vendor-advisory\", \"x_refsource_SLACKWARE\", \"x_transferred\"]}], \"providerMetadata\": {\"orgId\": \"af854a3a-2127-422b-91ae-364da2661108\", \"shortName\": \"CVE\", \"dateUpdated\": \"2024-08-07T00:09:18.898Z\"}}, {\"title\": \"CISA ADP Vulnrichment\", \"metrics\": [{\"other\": {\"type\": \"ssvc\", \"content\": {\"id\": \"CVE-2011-4517\", \"role\": \"CISA Coordinator\", \"options\": [{\"Exploitation\": \"none\"}, {\"Automatable\": \"no\"}, {\"Technical Impact\": \"partial\"}], \"version\": \"2.0.3\", \"timestamp\": \"2024-10-21T16:11:47.370512Z\"}}}], \"providerMetadata\": {\"orgId\": \"134c704f-9b21-4f2e-91b3-4a467353bcc0\", \"shortName\": \"CISA-ADP\", \"dateUpdated\": \"2024-10-21T16:11:51.230Z\"}}], \"cna\": {\"affected\": [{\"vendor\": \"n/a\", \"product\": \"n/a\", \"versions\": [{\"status\": \"affected\", \"version\": \"n/a\"}]}], \"datePublic\": \"2011-12-08T00:00:00.000Z\", \"references\": [{\"url\": \"http://www.redhat.com/support/errata/RHSA-2011-1811.html\", \"name\": \"RHSA-2011:1811\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://bugzilla.redhat.com/show_bug.cgi?id=747726\", \"tags\": [\"x_refsource_CONFIRM\"]}, {\"url\": \"http://secunia.com/advisories/47306\", \"name\": \"47306\", \"tags\": [\"third-party-advisory\", \"x_refsource_SECUNIA\"]}, {\"url\": \"http://www.ubuntu.com/usn/USN-1315-1\", \"name\": \"USN-1315-1\", \"tags\": [\"vendor-advisory\", \"x_refsource_UBUNTU\"]}, {\"url\": \"http://lists.opensuse.org/opensuse-security-announce/2011-12/msg00010.html\", \"name\": \"openSUSE-SU-2011:1317\", \"tags\": [\"vendor-advisory\", \"x_refsource_SUSE\"]}, {\"url\": \"http://www.debian.org/security/2011/dsa-2371\", \"name\": \"DSA-2371\", \"tags\": [\"vendor-advisory\", \"x_refsource_DEBIAN\"]}, {\"url\": \"http://lists.fedoraproject.org/pipermail/package-announce/2011-December/071458.html\", \"name\": \"FEDORA-2011-16966\", \"tags\": [\"vendor-advisory\", \"x_refsource_FEDORA\"]}, {\"url\": \"http://www-01.ibm.com/support/docview.wss?uid=swg21660640\", \"tags\": [\"x_refsource_CONFIRM\"]}, {\"url\": \"http://lists.fedoraproject.org/pipermail/package-announce/2012-January/071561.html\", \"name\": \"FEDORA-2011-16955\", \"tags\": [\"vendor-advisory\", \"x_refsource_FEDORA\"]}, {\"url\": \"http://secunia.com/advisories/47353\", \"name\": \"47353\", \"tags\": [\"third-party-advisory\", \"x_refsource_SECUNIA\"]}, {\"url\": \"http://www.redhat.com/support/errata/RHSA-2011-1807.html\", \"name\": \"RHSA-2011:1807\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"http://osvdb.org/77596\", \"name\": \"77596\", \"tags\": [\"vdb-entry\", \"x_refsource_OSVDB\"]}, {\"url\": \"http://www.oracle.com/technetwork/topics/security/cpujan2012-366304.html\", \"tags\": [\"x_refsource_CONFIRM\"]}, {\"url\": \"http://rhn.redhat.com/errata/RHSA-2015-0698.html\", \"name\": \"RHSA-2015:0698\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://exchange.xforce.ibmcloud.com/vulnerabilities/71701\", \"name\": \"jasper-jpccrggetparms-bo(71701)\", \"tags\": [\"vdb-entry\", \"x_refsource_XF\"]}, {\"url\": \"http://www.kb.cert.org/vuls/id/887409\", \"name\": \"VU#887409\", \"tags\": [\"third-party-advisory\", \"x_refsource_CERT-VN\"]}, {\"url\": \"http://www.securityfocus.com/bid/50992\", \"name\": \"50992\", \"tags\": [\"vdb-entry\", \"x_refsource_BID\"]}, {\"url\": \"http://secunia.com/advisories/47193\", \"name\": \"47193\", \"tags\": [\"third-party-advisory\", \"x_refsource_SECUNIA\"]}, {\"url\": \"http://www.slackware.com/security/viewer.php?l=slackware-security\u0026y=2015\u0026m=slackware-security.538606\", \"name\": \"SSA:2015-302-02\", \"tags\": [\"vendor-advisory\", \"x_refsource_SLACKWARE\"]}], \"descriptions\": [{\"lang\": \"en\", \"value\": \"The jpc_crg_getparms function in libjasper/jpc/jpc_cs.c in JasPer 1.900.1 uses an incorrect data type during a certain size calculation, which allows remote attackers to trigger a heap-based buffer overflow and execute arbitrary code, or cause a denial of service (heap memory corruption), via a crafted component registration (CRG) marker segment in a JPEG2000 file.\"}], \"problemTypes\": [{\"descriptions\": [{\"lang\": \"en\", \"type\": \"text\", \"description\": \"n/a\"}]}], \"providerMetadata\": {\"orgId\": \"37e5125f-f79b-445b-8fad-9564f167944b\", \"shortName\": \"certcc\", \"dateUpdated\": \"2017-08-28T12:57:01.000Z\"}, \"x_legacyV4Record\": {\"affects\": {\"vendor\": {\"vendor_data\": [{\"product\": {\"product_data\": [{\"version\": {\"version_data\": [{\"version_value\": \"n/a\"}]}, \"product_name\": \"n/a\"}]}, \"vendor_name\": \"n/a\"}]}}, \"data_type\": \"CVE\", \"references\": {\"reference_data\": [{\"url\": \"http://www.redhat.com/support/errata/RHSA-2011-1811.html\", \"name\": \"RHSA-2011:1811\", \"refsource\": \"REDHAT\"}, {\"url\": \"https://bugzilla.redhat.com/show_bug.cgi?id=747726\", \"name\": \"https://bugzilla.redhat.com/show_bug.cgi?id=747726\", \"refsource\": \"CONFIRM\"}, {\"url\": \"http://secunia.com/advisories/47306\", \"name\": \"47306\", \"refsource\": \"SECUNIA\"}, {\"url\": \"http://www.ubuntu.com/usn/USN-1315-1\", \"name\": \"USN-1315-1\", \"refsource\": \"UBUNTU\"}, {\"url\": \"http://lists.opensuse.org/opensuse-security-announce/2011-12/msg00010.html\", \"name\": \"openSUSE-SU-2011:1317\", \"refsource\": \"SUSE\"}, {\"url\": \"http://www.debian.org/security/2011/dsa-2371\", \"name\": \"DSA-2371\", \"refsource\": \"DEBIAN\"}, {\"url\": \"http://lists.fedoraproject.org/pipermail/package-announce/2011-December/071458.html\", \"name\": \"FEDORA-2011-16966\", \"refsource\": \"FEDORA\"}, {\"url\": \"http://www-01.ibm.com/support/docview.wss?uid=swg21660640\", \"name\": \"http://www-01.ibm.com/support/docview.wss?uid=swg21660640\", \"refsource\": \"CONFIRM\"}, {\"url\": \"http://lists.fedoraproject.org/pipermail/package-announce/2012-January/071561.html\", \"name\": \"FEDORA-2011-16955\", \"refsource\": \"FEDORA\"}, {\"url\": \"http://secunia.com/advisories/47353\", \"name\": \"47353\", \"refsource\": \"SECUNIA\"}, {\"url\": \"http://www.redhat.com/support/errata/RHSA-2011-1807.html\", \"name\": \"RHSA-2011:1807\", \"refsource\": \"REDHAT\"}, {\"url\": \"http://osvdb.org/77596\", \"name\": \"77596\", \"refsource\": \"OSVDB\"}, {\"url\": \"http://www.oracle.com/technetwork/topics/security/cpujan2012-366304.html\", \"name\": \"http://www.oracle.com/technetwork/topics/security/cpujan2012-366304.html\", \"refsource\": \"CONFIRM\"}, {\"url\": \"http://rhn.redhat.com/errata/RHSA-2015-0698.html\", \"name\": \"RHSA-2015:0698\", \"refsource\": \"REDHAT\"}, {\"url\": \"https://exchange.xforce.ibmcloud.com/vulnerabilities/71701\", \"name\": \"jasper-jpccrggetparms-bo(71701)\", \"refsource\": \"XF\"}, {\"url\": \"http://www.kb.cert.org/vuls/id/887409\", \"name\": \"VU#887409\", \"refsource\": \"CERT-VN\"}, {\"url\": \"http://www.securityfocus.com/bid/50992\", \"name\": \"50992\", \"refsource\": \"BID\"}, {\"url\": \"http://secunia.com/advisories/47193\", \"name\": \"47193\", \"refsource\": \"SECUNIA\"}, {\"url\": \"http://www.slackware.com/security/viewer.php?l=slackware-security\u0026y=2015\u0026m=slackware-security.538606\", \"name\": \"SSA:2015-302-02\", \"refsource\": \"SLACKWARE\"}]}, \"data_format\": \"MITRE\", \"description\": {\"description_data\": [{\"lang\": \"eng\", \"value\": \"The jpc_crg_getparms function in libjasper/jpc/jpc_cs.c in JasPer 1.900.1 uses an incorrect data type during a certain size calculation, which allows remote attackers to trigger a heap-based buffer overflow and execute arbitrary code, or cause a denial of service (heap memory corruption), via a crafted component registration (CRG) marker segment in a JPEG2000 file.\"}]}, \"problemtype\": {\"problemtype_data\": [{\"description\": [{\"lang\": \"eng\", \"value\": \"n/a\"}]}]}, \"data_version\": \"4.0\", \"CVE_data_meta\": {\"ID\": \"CVE-2011-4517\", \"STATE\": \"PUBLIC\", \"ASSIGNER\": \"cert@cert.org\"}}}}",
      "cveMetadata": "{\"cveId\": \"CVE-2011-4517\", \"state\": \"PUBLISHED\", \"dateUpdated\": \"2024-10-21T16:11:56.211Z\", \"dateReserved\": \"2011-11-22T00:00:00.000Z\", \"assignerOrgId\": \"37e5125f-f79b-445b-8fad-9564f167944b\", \"datePublished\": \"2011-12-15T02:00:00.000Z\", \"assignerShortName\": \"certcc\"}",
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }
  }
}

RHSA-2015:0698

Vulnerability from csaf_redhat - Published: 2015-03-18 12:11 - Updated: 2025-11-21 17:51

Summary

Red Hat Security Advisory: rhevm-spice-client security, bug fix, and enhancement update

Severity

Important

Notes

Topic: Updated rhevm-spice-client packages that fix multiple security issues, several bugs, and add one enhancement are now available for Red Hat Enterprise Virtualization Manager 3. Red Hat Product Security has rated this update as having Important security impact. Common Vulnerability Scoring System (CVSS) base scores, which give detailed severity ratings, are available for each vulnerability from the CVE links in the References section.

Details: Red Hat Enterprise Virtualization Manager provides access to virtual machines using SPICE. These SPICE client packages provide the SPICE client and usbclerk service for both Windows 32-bit operating systems and Windows 64-bit operating systems. This update adds support for the TLS Fallback Signaling Cipher Suite Value (TLS_FALLBACK_SCSV), which can be used to prevent protocol downgrade attacks against applications which re-connect using a lower SSL/TLS protocol version when the initial connection indicating the highest supported protocol version fails. This can prevent a forceful downgrade of the communication to SSL 3.0. The SSL 3.0 protocol was found to be vulnerable to the padding oracle attack when using block cipher suites in cipher block chaining (CBC) mode. This issue is identified as CVE-2014-3566, and also known under the alias POODLE. This SSL 3.0 protocol flaw will not be addressed in a future update; it is recommended that users configure their applications to require at least TLS protocol version 1.0 for secure communication. For additional information about this flaw, see the Knowledgebase article at https://access.redhat.com/articles/1232123 Multiple flaws were found in the way JasPer decoded JPEG 2000 image files. A specially crafted file could cause an application using JasPer to crash or, possibly, execute arbitrary code. (CVE-2014-8138, CVE-2014-8157, CVE-2014-8158, CVE-2014-9029, CVE-2014-8137, CVE-2011-4516, CVE-2011-4517, CVE-2008-3520, CVE-2008-3522) Red Hat would like to thank oCERT for reporting CVE-2014-8137, CVE-2014-8138, CVE-2014-8157, CVE-2014-8158, CVE-2014-9029, CVE-2011-4516, and CVE-2011-4517. oCERT acknowledges Jose Duart of the Google Security Team as the original reporter of CVE-2014-8137 and CVE-2014-8138; and pyddeh as the original reporter of CVE-2014-8157 and CVE-2014-8158. The mingw-openssl and mingw-jasper packages have been upgraded to the latest upstream version, which provides a number of bug fixes and enhancements over the previous version. (BZ#1187585) This update also fixes the following bugs: * Previously, a guest system installed with tools incorrectly always started in full screen mode, even when the "Open in Full Screen" option was unchecked in console options. Now, when connecting in window mode with the option unchecked, the guest system starts in a window as expected. (BZ#1172126) * Prior to this update, copying and pasting of images from the client to the guest did not work when spice-gtk was built from upstream. Now, images can be copied and pasted without problems. (BZ#1187270) In addition, this update adds the following enhancement: * Administrators now have the option of automatic multiuser installation of virt-viewer onto many client workstations. (BZ#1187272) All rhevm-spice-client users are advised to upgrade to these updated packages, which correct these issues and add these enhancement.

Terms of Use: This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.

CVE-2008-3520

Multiple integer overflows in JasPer 1.900.1 might allow context-dependent attackers to have an unknown impact via a crafted image file, related to integer multiplication for memory allocation.

6.8 ()


                        
                          AV:N/AC:M/Au:N/C:P/I:P/A:P

CWE-190 - Integer Overflow or Wraparound

Affected products

Fixed 5 products

Product	Version	Remediation
Unresolved product id: 6Server-RHEV-S-3.5:rhevm-spice-client-0:3.5-3.el6.src	—	Vendor Fix fix
Unresolved product id: 6Server-RHEV-S-3.5:rhevm-spice-client-x64-cab-0:3.5-3.el6.noarch	—	Vendor Fix fix
Unresolved product id: 6Server-RHEV-S-3.5:rhevm-spice-client-x64-msi-0:3.5-3.el6.noarch	—	Vendor Fix fix
Unresolved product id: 6Server-RHEV-S-3.5:rhevm-spice-client-x86-cab-0:3.5-3.el6.noarch	—	Vendor Fix fix
Unresolved product id: 6Server-RHEV-S-3.5:rhevm-spice-client-x86-msi-0:3.5-3.el6.noarch	—	Vendor Fix fix

Threats

Impact Moderate

CVE-2008-3522

Buffer overflow in the jas_stream_printf function in libjasper/base/jas_stream.c in JasPer 1.900.1 might allow context-dependent attackers to have an unknown impact via vectors related to the mif_hdr_put function and use of vsprintf.

6.8 ()


                        
                          AV:N/AC:M/Au:N/C:P/I:P/A:P

CWE-122 - Heap-based Buffer Overflow

Affected products

Fixed 5 products

Product	Version	Remediation
Unresolved product id: 6Server-RHEV-S-3.5:rhevm-spice-client-0:3.5-3.el6.src	—	Vendor Fix fix
Unresolved product id: 6Server-RHEV-S-3.5:rhevm-spice-client-x64-cab-0:3.5-3.el6.noarch	—	Vendor Fix fix
Unresolved product id: 6Server-RHEV-S-3.5:rhevm-spice-client-x64-msi-0:3.5-3.el6.noarch	—	Vendor Fix fix
Unresolved product id: 6Server-RHEV-S-3.5:rhevm-spice-client-x86-cab-0:3.5-3.el6.noarch	—	Vendor Fix fix
Unresolved product id: 6Server-RHEV-S-3.5:rhevm-spice-client-x86-msi-0:3.5-3.el6.noarch	—	Vendor Fix fix

Threats

Impact Moderate

CVE-2011-4516

A heap-based buffer overflow flaw was found in the way JasPer decoded JPEG 2000 compressed image files. An attacker could create a malicious JPEG 2000 compressed image file that, when opened, would cause applications that use JasPer (such as Nautilus) to crash or, potentially, execute arbitrary code.

6.8 ()


                        
                          AV:N/AC:M/Au:N/C:P/I:P/A:P

CWE-122 - Heap-based Buffer Overflow

Affected products

Fixed 5 products

Product	Version	Remediation
Unresolved product id: 6Server-RHEV-S-3.5:rhevm-spice-client-0:3.5-3.el6.src	—	Vendor Fix fix
Unresolved product id: 6Server-RHEV-S-3.5:rhevm-spice-client-x64-cab-0:3.5-3.el6.noarch	—	Vendor Fix fix
Unresolved product id: 6Server-RHEV-S-3.5:rhevm-spice-client-x64-msi-0:3.5-3.el6.noarch	—	Vendor Fix fix
Unresolved product id: 6Server-RHEV-S-3.5:rhevm-spice-client-x86-cab-0:3.5-3.el6.noarch	—	Vendor Fix fix
Unresolved product id: 6Server-RHEV-S-3.5:rhevm-spice-client-x86-msi-0:3.5-3.el6.noarch	—	Vendor Fix fix

Threats

Impact Important

CVE-2011-4517

6.8 ()


                        
                          AV:N/AC:M/Au:N/C:P/I:P/A:P

CWE-122 - Heap-based Buffer Overflow

Affected products

Fixed 5 products

Product	Version	Remediation
Unresolved product id: 6Server-RHEV-S-3.5:rhevm-spice-client-0:3.5-3.el6.src	—	Vendor Fix fix
Unresolved product id: 6Server-RHEV-S-3.5:rhevm-spice-client-x64-cab-0:3.5-3.el6.noarch	—	Vendor Fix fix
Unresolved product id: 6Server-RHEV-S-3.5:rhevm-spice-client-x64-msi-0:3.5-3.el6.noarch	—	Vendor Fix fix
Unresolved product id: 6Server-RHEV-S-3.5:rhevm-spice-client-x86-cab-0:3.5-3.el6.noarch	—	Vendor Fix fix
Unresolved product id: 6Server-RHEV-S-3.5:rhevm-spice-client-x86-msi-0:3.5-3.el6.noarch	—	Vendor Fix fix

Threats

Impact Important

CVE-2014-8137

A double free flaw was found in the way JasPer parsed ICC color profiles in JPEG 2000 image files. A specially crafted file could cause an application using JasPer to crash or, possibly, execute arbitrary code.

5.1 ()


                        
                          AV:N/AC:H/Au:N/C:P/I:P/A:P

CWE-416 - Use After Free

Affected products

Fixed 5 products

Product	Version	Remediation
Unresolved product id: 6Server-RHEV-S-3.5:rhevm-spice-client-0:3.5-3.el6.src	—	Vendor Fix fix
Unresolved product id: 6Server-RHEV-S-3.5:rhevm-spice-client-x64-cab-0:3.5-3.el6.noarch	—	Vendor Fix fix
Unresolved product id: 6Server-RHEV-S-3.5:rhevm-spice-client-x64-msi-0:3.5-3.el6.noarch	—	Vendor Fix fix
Unresolved product id: 6Server-RHEV-S-3.5:rhevm-spice-client-x86-cab-0:3.5-3.el6.noarch	—	Vendor Fix fix
Unresolved product id: 6Server-RHEV-S-3.5:rhevm-spice-client-x86-msi-0:3.5-3.el6.noarch	—	Vendor Fix fix

Threats

Impact Low

CVE-2014-8138

A heap-based buffer overflow flaw was found in the way JasPer decoded JPEG 2000 image files. A specially crafted file could cause an application using JasPer to crash or, possibly, execute arbitrary code.

6.8 ()


                        
                          AV:N/AC:M/Au:N/C:P/I:P/A:P

CWE-122 - Heap-based Buffer Overflow

Affected products

Fixed 5 products

Product	Version	Remediation
Unresolved product id: 6Server-RHEV-S-3.5:rhevm-spice-client-0:3.5-3.el6.src	—	Vendor Fix fix
Unresolved product id: 6Server-RHEV-S-3.5:rhevm-spice-client-x64-cab-0:3.5-3.el6.noarch	—	Vendor Fix fix
Unresolved product id: 6Server-RHEV-S-3.5:rhevm-spice-client-x64-msi-0:3.5-3.el6.noarch	—	Vendor Fix fix
Unresolved product id: 6Server-RHEV-S-3.5:rhevm-spice-client-x86-cab-0:3.5-3.el6.noarch	—	Vendor Fix fix
Unresolved product id: 6Server-RHEV-S-3.5:rhevm-spice-client-x86-msi-0:3.5-3.el6.noarch	—	Vendor Fix fix

Threats

Impact Important

CVE-2014-8157

An off-by-one flaw, leading to a heap-based buffer overflow, was found in the way JasPer decoded JPEG 2000 image files. A specially crafted file could cause an application using JasPer to crash or, possibly, execute arbitrary code.

6.8 ()


                        
                          AV:N/AC:M/Au:N/C:P/I:P/A:P

CWE-122 - Heap-based Buffer Overflow

Affected products

Fixed 5 products

Product	Version	Remediation
Unresolved product id: 6Server-RHEV-S-3.5:rhevm-spice-client-0:3.5-3.el6.src	—	Vendor Fix fix
Unresolved product id: 6Server-RHEV-S-3.5:rhevm-spice-client-x64-cab-0:3.5-3.el6.noarch	—	Vendor Fix fix
Unresolved product id: 6Server-RHEV-S-3.5:rhevm-spice-client-x64-msi-0:3.5-3.el6.noarch	—	Vendor Fix fix
Unresolved product id: 6Server-RHEV-S-3.5:rhevm-spice-client-x86-cab-0:3.5-3.el6.noarch	—	Vendor Fix fix
Unresolved product id: 6Server-RHEV-S-3.5:rhevm-spice-client-x86-msi-0:3.5-3.el6.noarch	—	Vendor Fix fix

Threats

Impact Important

CVE-2014-8158

An unrestricted stack memory use flaw was found in the way JasPer decoded JPEG 2000 image files. A specially crafted file could cause an application using JasPer to crash or, possibly, execute arbitrary code.

5.1 ()


                        
                          AV:N/AC:H/Au:N/C:P/I:P/A:P

CWE-770 - Allocation of Resources Without Limits or Throttling

Affected products

Fixed 5 products

Product	Version	Remediation
Unresolved product id: 6Server-RHEV-S-3.5:rhevm-spice-client-0:3.5-3.el6.src	—	Vendor Fix fix
Unresolved product id: 6Server-RHEV-S-3.5:rhevm-spice-client-x64-cab-0:3.5-3.el6.noarch	—	Vendor Fix fix
Unresolved product id: 6Server-RHEV-S-3.5:rhevm-spice-client-x64-msi-0:3.5-3.el6.noarch	—	Vendor Fix fix
Unresolved product id: 6Server-RHEV-S-3.5:rhevm-spice-client-x86-cab-0:3.5-3.el6.noarch	—	Vendor Fix fix
Unresolved product id: 6Server-RHEV-S-3.5:rhevm-spice-client-x86-msi-0:3.5-3.el6.noarch	—	Vendor Fix fix

Threats

Impact Moderate

CVE-2014-9029

Multiple off-by-one flaws, leading to heap-based buffer overflows, were found in the way JasPer decoded JPEG 2000 files. A specially crafted file could cause an application using JasPer to crash or, possibly, execute arbitrary code.

6.8 ()


                        
                          AV:N/AC:M/Au:N/C:P/I:P/A:P

CWE-122 - Heap-based Buffer Overflow

Affected products

Fixed 5 products

Product	Version	Remediation
Unresolved product id: 6Server-RHEV-S-3.5:rhevm-spice-client-0:3.5-3.el6.src	—	Vendor Fix fix
Unresolved product id: 6Server-RHEV-S-3.5:rhevm-spice-client-x64-cab-0:3.5-3.el6.noarch	—	Vendor Fix fix
Unresolved product id: 6Server-RHEV-S-3.5:rhevm-spice-client-x64-msi-0:3.5-3.el6.noarch	—	Vendor Fix fix
Unresolved product id: 6Server-RHEV-S-3.5:rhevm-spice-client-x86-cab-0:3.5-3.el6.noarch	—	Vendor Fix fix
Unresolved product id: 6Server-RHEV-S-3.5:rhevm-spice-client-x86-msi-0:3.5-3.el6.noarch	—	Vendor Fix fix

Threats

Impact Important

References

51 references

URL	Category
https://access.redhat.com/errata/RHSA-2015:0698	self
https://access.redhat.com/security/updates/classi…	external
https://bugzilla.redhat.com/show_bug.cgi?id=461476	external
https://bugzilla.redhat.com/show_bug.cgi?id=461478	external
https://bugzilla.redhat.com/show_bug.cgi?id=747726	external
https://bugzilla.redhat.com/show_bug.cgi?id=1167537	external
https://bugzilla.redhat.com/show_bug.cgi?id=1172126	external
https://bugzilla.redhat.com/show_bug.cgi?id=1173157	external
https://bugzilla.redhat.com/show_bug.cgi?id=1173162	external
https://bugzilla.redhat.com/show_bug.cgi?id=1179282	external
https://bugzilla.redhat.com/show_bug.cgi?id=1179298	external
https://bugzilla.redhat.com/show_bug.cgi?id=1187270	external
https://security.access.redhat.com/data/csaf/v2/a…	self
https://access.redhat.com/security/cve/CVE-2008-3520	self
https://bugzilla.redhat.com/show_bug.cgi?id=461476	external
https://www.cve.org/CVERecord?id=CVE-2008-3520	external
https://nvd.nist.gov/vuln/detail/CVE-2008-3520	external
https://access.redhat.com/security/cve/CVE-2008-3522	self
https://bugzilla.redhat.com/show_bug.cgi?id=461478	external
https://www.cve.org/CVERecord?id=CVE-2008-3522	external
https://nvd.nist.gov/vuln/detail/CVE-2008-3522	external
https://access.redhat.com/security/cve/CVE-2011-4516	self
https://bugzilla.redhat.com/show_bug.cgi?id=747726	external
https://www.cve.org/CVERecord?id=CVE-2011-4516	external
https://nvd.nist.gov/vuln/detail/CVE-2011-4516	external
https://access.redhat.com/security/cve/CVE-2011-4517	self
https://www.cve.org/CVERecord?id=CVE-2011-4517	external
https://nvd.nist.gov/vuln/detail/CVE-2011-4517	external
https://access.redhat.com/security/cve/CVE-2014-8137	self
https://bugzilla.redhat.com/show_bug.cgi?id=1173157	external
https://www.cve.org/CVERecord?id=CVE-2014-8137	external
https://nvd.nist.gov/vuln/detail/CVE-2014-8137	external
http://www.ocert.org/advisories/ocert-2014-012.html	external
https://access.redhat.com/security/cve/CVE-2014-8138	self
https://bugzilla.redhat.com/show_bug.cgi?id=1173162	external
https://www.cve.org/CVERecord?id=CVE-2014-8138	external
https://nvd.nist.gov/vuln/detail/CVE-2014-8138	external
https://access.redhat.com/security/cve/CVE-2014-8157	self
https://bugzilla.redhat.com/show_bug.cgi?id=1179282	external
https://www.cve.org/CVERecord?id=CVE-2014-8157	external
https://nvd.nist.gov/vuln/detail/CVE-2014-8157	external
http://www.ocert.org/advisories/ocert-2015-001.html	external
https://access.redhat.com/security/cve/CVE-2014-8158	self
https://bugzilla.redhat.com/show_bug.cgi?id=1179298	external
https://www.cve.org/CVERecord?id=CVE-2014-8158	external
https://nvd.nist.gov/vuln/detail/CVE-2014-8158	external
https://access.redhat.com/security/cve/CVE-2014-9029	self
https://bugzilla.redhat.com/show_bug.cgi?id=1167537	external
https://www.cve.org/CVERecord?id=CVE-2014-9029	external
https://nvd.nist.gov/vuln/detail/CVE-2014-9029	external
http://www.ocert.org/advisories/ocert-2014-009.html	external

Acknowledgments

CERT Coordination Center Jonathan Foote

oCERT

JSON

To clipboard

{
  "document": {
    "aggregate_severity": {
      "namespace": "https://access.redhat.com/security/updates/classification/",
      "text": "Important"
    },
    "category": "csaf_security_advisory",
    "csaf_version": "2.0",
    "distribution": {
      "text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
      "tlp": {
        "label": "WHITE",
        "url": "https://www.first.org/tlp/"
      }
    },
    "lang": "en",
    "notes": [
      {
        "category": "summary",
        "text": "Updated rhevm-spice-client packages that fix multiple security issues,\nseveral bugs, and add one enhancement are now available for Red Hat\nEnterprise Virtualization Manager 3.\n\nRed Hat Product Security has rated this update as having Important security\nimpact. Common Vulnerability Scoring System (CVSS) base scores, which give\ndetailed severity ratings, are available for each vulnerability from the\nCVE links in the References section.",
        "title": "Topic"
      },
      {
        "category": "general",
        "text": "Red Hat Enterprise Virtualization Manager provides access to virtual\nmachines using SPICE. These SPICE client packages provide the SPICE client\nand usbclerk service for both Windows 32-bit operating systems and Windows\n64-bit operating systems.\n\nThis update adds support for the TLS Fallback Signaling Cipher Suite Value\n(TLS_FALLBACK_SCSV), which can be used to prevent protocol downgrade\nattacks against applications which re-connect using a lower SSL/TLS\nprotocol version when the initial connection indicating the highest\nsupported protocol version fails.\n\nThis can prevent a forceful downgrade of the communication to SSL 3.0.\nThe SSL 3.0 protocol was found to be vulnerable to the padding oracle\nattack when using block cipher suites in cipher block chaining (CBC) mode.\nThis issue is identified as CVE-2014-3566, and also known under the alias\nPOODLE. This SSL 3.0 protocol flaw will not be addressed in a future\nupdate; it is recommended that users configure their applications to\nrequire at least TLS protocol version 1.0 for secure communication.\n\nFor additional information about this flaw, see the Knowledgebase article\nat https://access.redhat.com/articles/1232123\n\nMultiple flaws were found in the way JasPer decoded JPEG 2000 image files.\nA specially crafted file could cause an application using JasPer to crash\nor, possibly, execute arbitrary code. (CVE-2014-8138, CVE-2014-8157,\nCVE-2014-8158, CVE-2014-9029, CVE-2014-8137, CVE-2011-4516, CVE-2011-4517,\nCVE-2008-3520, CVE-2008-3522)\n\nRed Hat would like to thank oCERT for reporting CVE-2014-8137,\nCVE-2014-8138, CVE-2014-8157, CVE-2014-8158, CVE-2014-9029, CVE-2011-4516,\nand CVE-2011-4517. oCERT acknowledges Jose Duart of the Google Security\nTeam as the original reporter of CVE-2014-8137 and CVE-2014-8138; and\npyddeh as the original reporter of CVE-2014-8157 and CVE-2014-8158.\n\nThe mingw-openssl and mingw-jasper packages have been upgraded to the\nlatest upstream version, which provides a number of bug fixes and\nenhancements over the previous version. (BZ#1187585)\n\nThis update also fixes the following bugs:\n\n* Previously, a guest system installed with tools incorrectly always\nstarted in full screen mode, even when the \"Open in Full Screen\" option was\nunchecked in console options. Now, when connecting in window mode with the\noption unchecked, the guest system starts in a window as expected.\n(BZ#1172126)\n\n* Prior to this update, copying and pasting of images from the client to\nthe guest did not work when spice-gtk was built from upstream. Now, images\ncan be copied and pasted without problems. (BZ#1187270)\n\nIn addition, this update adds the following enhancement:\n\n* Administrators now have the option of automatic multiuser installation of\nvirt-viewer onto many client workstations. (BZ#1187272)\n\nAll rhevm-spice-client users are advised to upgrade to these updated\npackages, which correct these issues and add these enhancement.",
        "title": "Details"
      },
      {
        "category": "legal_disclaimer",
        "text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
        "title": "Terms of Use"
      }
    ],
    "publisher": {
      "category": "vendor",
      "contact_details": "https://access.redhat.com/security/team/contact/",
      "issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
      "name": "Red Hat Product Security",
      "namespace": "https://www.redhat.com"
    },
    "references": [
      {
        "category": "self",
        "summary": "https://access.redhat.com/errata/RHSA-2015:0698",
        "url": "https://access.redhat.com/errata/RHSA-2015:0698"
      },
      {
        "category": "external",
        "summary": "https://access.redhat.com/security/updates/classification/#important",
        "url": "https://access.redhat.com/security/updates/classification/#important"
      },
      {
        "category": "external",
        "summary": "461476",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=461476"
      },
      {
        "category": "external",
        "summary": "461478",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=461478"
      },
      {
        "category": "external",
        "summary": "747726",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=747726"
      },
      {
        "category": "external",
        "summary": "1167537",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1167537"
      },
      {
        "category": "external",
        "summary": "1172126",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1172126"
      },
      {
        "category": "external",
        "summary": "1173157",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1173157"
      },
      {
        "category": "external",
        "summary": "1173162",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1173162"
      },
      {
        "category": "external",
        "summary": "1179282",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1179282"
      },
      {
        "category": "external",
        "summary": "1179298",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1179298"
      },
      {
        "category": "external",
        "summary": "1187270",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1187270"
      },
      {
        "category": "self",
        "summary": "Canonical URL",
        "url": "https://security.access.redhat.com/data/csaf/v2/advisories/2015/rhsa-2015_0698.json"
      }
    ],
    "title": "Red Hat Security Advisory: rhevm-spice-client security, bug fix, and enhancement update",
    "tracking": {
      "current_release_date": "2025-11-21T17:51:58+00:00",
      "generator": {
        "date": "2025-11-21T17:51:58+00:00",
        "engine": {
          "name": "Red Hat SDEngine",
          "version": "4.6.12"
        }
      },
      "id": "RHSA-2015:0698",
      "initial_release_date": "2015-03-18T12:11:46+00:00",
      "revision_history": [
        {
          "date": "2015-03-18T12:11:46+00:00",
          "number": "1",
          "summary": "Initial version"
        },
        {
          "date": "2015-03-18T12:11:47+00:00",
          "number": "2",
          "summary": "Last updated version"
        },
        {
          "date": "2025-11-21T17:51:58+00:00",
          "number": "3",
          "summary": "Last generated version"
        }
      ],
      "status": "final",
      "version": "3"
    }
  },
  "product_tree": {
    "branches": [
      {
        "branches": [
          {
            "branches": [
              {
                "category": "product_name",
                "name": "RHEV-M 3.5",
                "product": {
                  "name": "RHEV-M 3.5",
                  "product_id": "6Server-RHEV-S-3.5",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:redhat:rhev_manager:3"
                  }
                }
              }
            ],
            "category": "product_family",
            "name": "Red Hat Virtualization"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "rhevm-spice-client-0:3.5-3.el6.src",
                "product": {
                  "name": "rhevm-spice-client-0:3.5-3.el6.src",
                  "product_id": "rhevm-spice-client-0:3.5-3.el6.src",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/rhevm-spice-client@3.5-3.el6?arch=src"
                  }
                }
              }
            ],
            "category": "architecture",
            "name": "src"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "rhevm-spice-client-x86-cab-0:3.5-3.el6.noarch",
                "product": {
                  "name": "rhevm-spice-client-x86-cab-0:3.5-3.el6.noarch",
                  "product_id": "rhevm-spice-client-x86-cab-0:3.5-3.el6.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/rhevm-spice-client-x86-cab@3.5-3.el6?arch=noarch"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "rhevm-spice-client-x64-msi-0:3.5-3.el6.noarch",
                "product": {
                  "name": "rhevm-spice-client-x64-msi-0:3.5-3.el6.noarch",
                  "product_id": "rhevm-spice-client-x64-msi-0:3.5-3.el6.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/rhevm-spice-client-x64-msi@3.5-3.el6?arch=noarch"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "rhevm-spice-client-x86-msi-0:3.5-3.el6.noarch",
                "product": {
                  "name": "rhevm-spice-client-x86-msi-0:3.5-3.el6.noarch",
                  "product_id": "rhevm-spice-client-x86-msi-0:3.5-3.el6.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/rhevm-spice-client-x86-msi@3.5-3.el6?arch=noarch"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "rhevm-spice-client-x64-cab-0:3.5-3.el6.noarch",
                "product": {
                  "name": "rhevm-spice-client-x64-cab-0:3.5-3.el6.noarch",
                  "product_id": "rhevm-spice-client-x64-cab-0:3.5-3.el6.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/rhevm-spice-client-x64-cab@3.5-3.el6?arch=noarch"
                  }
                }
              }
            ],
            "category": "architecture",
            "name": "noarch"
          }
        ],
        "category": "vendor",
        "name": "Red Hat"
      }
    ],
    "relationships": [
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "rhevm-spice-client-0:3.5-3.el6.src as a component of RHEV-M 3.5",
          "product_id": "6Server-RHEV-S-3.5:rhevm-spice-client-0:3.5-3.el6.src"
        },
        "product_reference": "rhevm-spice-client-0:3.5-3.el6.src",
        "relates_to_product_reference": "6Server-RHEV-S-3.5"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "rhevm-spice-client-x64-cab-0:3.5-3.el6.noarch as a component of RHEV-M 3.5",
          "product_id": "6Server-RHEV-S-3.5:rhevm-spice-client-x64-cab-0:3.5-3.el6.noarch"
        },
        "product_reference": "rhevm-spice-client-x64-cab-0:3.5-3.el6.noarch",
        "relates_to_product_reference": "6Server-RHEV-S-3.5"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "rhevm-spice-client-x64-msi-0:3.5-3.el6.noarch as a component of RHEV-M 3.5",
          "product_id": "6Server-RHEV-S-3.5:rhevm-spice-client-x64-msi-0:3.5-3.el6.noarch"
        },
        "product_reference": "rhevm-spice-client-x64-msi-0:3.5-3.el6.noarch",
        "relates_to_product_reference": "6Server-RHEV-S-3.5"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "rhevm-spice-client-x86-cab-0:3.5-3.el6.noarch as a component of RHEV-M 3.5",
          "product_id": "6Server-RHEV-S-3.5:rhevm-spice-client-x86-cab-0:3.5-3.el6.noarch"
        },
        "product_reference": "rhevm-spice-client-x86-cab-0:3.5-3.el6.noarch",
        "relates_to_product_reference": "6Server-RHEV-S-3.5"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "rhevm-spice-client-x86-msi-0:3.5-3.el6.noarch as a component of RHEV-M 3.5",
          "product_id": "6Server-RHEV-S-3.5:rhevm-spice-client-x86-msi-0:3.5-3.el6.noarch"
        },
        "product_reference": "rhevm-spice-client-x86-msi-0:3.5-3.el6.noarch",
        "relates_to_product_reference": "6Server-RHEV-S-3.5"
      }
    ]
  },
  "vulnerabilities": [
    {
      "cve": "CVE-2008-3520",
      "cwe": {
        "id": "CWE-190",
        "name": "Integer Overflow or Wraparound"
      },
      "discovery_date": "2008-05-19T00:00:00+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "461476"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "Multiple integer overflows in JasPer 1.900.1 might allow context-dependent attackers to have an unknown impact via a crafted image file, related to integer multiplication for memory allocation.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "jasper: multiple integer overflows in jas_alloc calls",
          "title": "Vulnerability summary"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "6Server-RHEV-S-3.5:rhevm-spice-client-0:3.5-3.el6.src",
          "6Server-RHEV-S-3.5:rhevm-spice-client-x64-cab-0:3.5-3.el6.noarch",
          "6Server-RHEV-S-3.5:rhevm-spice-client-x64-msi-0:3.5-3.el6.noarch",
          "6Server-RHEV-S-3.5:rhevm-spice-client-x86-cab-0:3.5-3.el6.noarch",
          "6Server-RHEV-S-3.5:rhevm-spice-client-x86-msi-0:3.5-3.el6.noarch"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2008-3520"
        },
        {
          "category": "external",
          "summary": "RHBZ#461476",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=461476"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2008-3520",
          "url": "https://www.cve.org/CVERecord?id=CVE-2008-3520"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2008-3520",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2008-3520"
        }
      ],
      "release_date": "2008-09-08T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2015-03-18T12:11:46+00:00",
          "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
          "product_ids": [
            "6Server-RHEV-S-3.5:rhevm-spice-client-0:3.5-3.el6.src",
            "6Server-RHEV-S-3.5:rhevm-spice-client-x64-cab-0:3.5-3.el6.noarch",
            "6Server-RHEV-S-3.5:rhevm-spice-client-x64-msi-0:3.5-3.el6.noarch",
            "6Server-RHEV-S-3.5:rhevm-spice-client-x86-cab-0:3.5-3.el6.noarch",
            "6Server-RHEV-S-3.5:rhevm-spice-client-x86-msi-0:3.5-3.el6.noarch"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2015:0698"
        }
      ],
      "scores": [
        {
          "cvss_v2": {
            "accessComplexity": "MEDIUM",
            "accessVector": "NETWORK",
            "authentication": "NONE",
            "availabilityImpact": "PARTIAL",
            "baseScore": 6.8,
            "confidentialityImpact": "PARTIAL",
            "integrityImpact": "PARTIAL",
            "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P",
            "version": "2.0"
          },
          "products": [
            "6Server-RHEV-S-3.5:rhevm-spice-client-0:3.5-3.el6.src",
            "6Server-RHEV-S-3.5:rhevm-spice-client-x64-cab-0:3.5-3.el6.noarch",
            "6Server-RHEV-S-3.5:rhevm-spice-client-x64-msi-0:3.5-3.el6.noarch",
            "6Server-RHEV-S-3.5:rhevm-spice-client-x86-cab-0:3.5-3.el6.noarch",
            "6Server-RHEV-S-3.5:rhevm-spice-client-x86-msi-0:3.5-3.el6.noarch"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Moderate"
        }
      ],
      "title": "jasper: multiple integer overflows in jas_alloc calls"
    },
    {
      "cve": "CVE-2008-3522",
      "cwe": {
        "id": "CWE-122",
        "name": "Heap-based Buffer Overflow"
      },
      "discovery_date": "2008-05-19T00:00:00+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "461478"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "Buffer overflow in the jas_stream_printf function in libjasper/base/jas_stream.c in JasPer 1.900.1 might allow context-dependent attackers to have an unknown impact via vectors related to the mif_hdr_put function and use of vsprintf.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "jasper: possible buffer overflow in jas_stream_printf()",
          "title": "Vulnerability summary"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "6Server-RHEV-S-3.5:rhevm-spice-client-0:3.5-3.el6.src",
          "6Server-RHEV-S-3.5:rhevm-spice-client-x64-cab-0:3.5-3.el6.noarch",
          "6Server-RHEV-S-3.5:rhevm-spice-client-x64-msi-0:3.5-3.el6.noarch",
          "6Server-RHEV-S-3.5:rhevm-spice-client-x86-cab-0:3.5-3.el6.noarch",
          "6Server-RHEV-S-3.5:rhevm-spice-client-x86-msi-0:3.5-3.el6.noarch"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2008-3522"
        },
        {
          "category": "external",
          "summary": "RHBZ#461478",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=461478"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2008-3522",
          "url": "https://www.cve.org/CVERecord?id=CVE-2008-3522"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2008-3522",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2008-3522"
        }
      ],
      "release_date": "2008-09-08T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2015-03-18T12:11:46+00:00",
          "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
          "product_ids": [
            "6Server-RHEV-S-3.5:rhevm-spice-client-0:3.5-3.el6.src",
            "6Server-RHEV-S-3.5:rhevm-spice-client-x64-cab-0:3.5-3.el6.noarch",
            "6Server-RHEV-S-3.5:rhevm-spice-client-x64-msi-0:3.5-3.el6.noarch",
            "6Server-RHEV-S-3.5:rhevm-spice-client-x86-cab-0:3.5-3.el6.noarch",
            "6Server-RHEV-S-3.5:rhevm-spice-client-x86-msi-0:3.5-3.el6.noarch"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2015:0698"
        }
      ],
      "scores": [
        {
          "cvss_v2": {
            "accessComplexity": "MEDIUM",
            "accessVector": "NETWORK",
            "authentication": "NONE",
            "availabilityImpact": "PARTIAL",
            "baseScore": 6.8,
            "confidentialityImpact": "PARTIAL",
            "integrityImpact": "PARTIAL",
            "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P",
            "version": "2.0"
          },
          "products": [
            "6Server-RHEV-S-3.5:rhevm-spice-client-0:3.5-3.el6.src",
            "6Server-RHEV-S-3.5:rhevm-spice-client-x64-cab-0:3.5-3.el6.noarch",
            "6Server-RHEV-S-3.5:rhevm-spice-client-x64-msi-0:3.5-3.el6.noarch",
            "6Server-RHEV-S-3.5:rhevm-spice-client-x86-cab-0:3.5-3.el6.noarch",
            "6Server-RHEV-S-3.5:rhevm-spice-client-x86-msi-0:3.5-3.el6.noarch"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Moderate"
        }
      ],
      "title": "jasper: possible buffer overflow in jas_stream_printf()"
    },
    {
      "acknowledgments": [
        {
          "names": [
            "Jonathan Foote"
          ],
          "organization": "CERT Coordination Center"
        }
      ],
      "cve": "CVE-2011-4516",
      "cwe": {
        "id": "CWE-122",
        "name": "Heap-based Buffer Overflow"
      },
      "discovery_date": "2011-10-20T00:00:00+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "747726"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "A heap-based buffer overflow flaw was found in the way JasPer decoded JPEG 2000 compressed image files. An attacker could create a malicious JPEG 2000 compressed image file that, when opened, would cause applications that use JasPer (such as Nautilus) to crash or, potentially, execute arbitrary code.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "jasper: heap buffer overflow flaws lead to arbitrary code execution (CERT VU#887409)",
          "title": "Vulnerability summary"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "6Server-RHEV-S-3.5:rhevm-spice-client-0:3.5-3.el6.src",
          "6Server-RHEV-S-3.5:rhevm-spice-client-x64-cab-0:3.5-3.el6.noarch",
          "6Server-RHEV-S-3.5:rhevm-spice-client-x64-msi-0:3.5-3.el6.noarch",
          "6Server-RHEV-S-3.5:rhevm-spice-client-x86-cab-0:3.5-3.el6.noarch",
          "6Server-RHEV-S-3.5:rhevm-spice-client-x86-msi-0:3.5-3.el6.noarch"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2011-4516"
        },
        {
          "category": "external",
          "summary": "RHBZ#747726",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=747726"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2011-4516",
          "url": "https://www.cve.org/CVERecord?id=CVE-2011-4516"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2011-4516",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2011-4516"
        }
      ],
      "release_date": "2011-12-08T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2015-03-18T12:11:46+00:00",
          "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
          "product_ids": [
            "6Server-RHEV-S-3.5:rhevm-spice-client-0:3.5-3.el6.src",
            "6Server-RHEV-S-3.5:rhevm-spice-client-x64-cab-0:3.5-3.el6.noarch",
            "6Server-RHEV-S-3.5:rhevm-spice-client-x64-msi-0:3.5-3.el6.noarch",
            "6Server-RHEV-S-3.5:rhevm-spice-client-x86-cab-0:3.5-3.el6.noarch",
            "6Server-RHEV-S-3.5:rhevm-spice-client-x86-msi-0:3.5-3.el6.noarch"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2015:0698"
        }
      ],
      "scores": [
        {
          "cvss_v2": {
            "accessComplexity": "MEDIUM",
            "accessVector": "NETWORK",
            "authentication": "NONE",
            "availabilityImpact": "PARTIAL",
            "baseScore": 6.8,
            "confidentialityImpact": "PARTIAL",
            "integrityImpact": "PARTIAL",
            "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P",
            "version": "2.0"
          },
          "products": [
            "6Server-RHEV-S-3.5:rhevm-spice-client-0:3.5-3.el6.src",
            "6Server-RHEV-S-3.5:rhevm-spice-client-x64-cab-0:3.5-3.el6.noarch",
            "6Server-RHEV-S-3.5:rhevm-spice-client-x64-msi-0:3.5-3.el6.noarch",
            "6Server-RHEV-S-3.5:rhevm-spice-client-x86-cab-0:3.5-3.el6.noarch",
            "6Server-RHEV-S-3.5:rhevm-spice-client-x86-msi-0:3.5-3.el6.noarch"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Important"
        }
      ],
      "title": "jasper: heap buffer overflow flaws lead to arbitrary code execution (CERT VU#887409)"
    },
    {
      "acknowledgments": [
        {
          "names": [
            "Jonathan Foote"
          ],
          "organization": "CERT Coordination Center"
        }
      ],
      "cve": "CVE-2011-4517",
      "cwe": {
        "id": "CWE-122",
        "name": "Heap-based Buffer Overflow"
      },
      "discovery_date": "2011-10-20T00:00:00+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "747726"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "A heap-based buffer overflow flaw was found in the way JasPer decoded JPEG 2000 compressed image files. An attacker could create a malicious JPEG 2000 compressed image file that, when opened, would cause applications that use JasPer (such as Nautilus) to crash or, potentially, execute arbitrary code.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "jasper: heap buffer overflow flaws lead to arbitrary code execution (CERT VU#887409)",
          "title": "Vulnerability summary"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "6Server-RHEV-S-3.5:rhevm-spice-client-0:3.5-3.el6.src",
          "6Server-RHEV-S-3.5:rhevm-spice-client-x64-cab-0:3.5-3.el6.noarch",
          "6Server-RHEV-S-3.5:rhevm-spice-client-x64-msi-0:3.5-3.el6.noarch",
          "6Server-RHEV-S-3.5:rhevm-spice-client-x86-cab-0:3.5-3.el6.noarch",
          "6Server-RHEV-S-3.5:rhevm-spice-client-x86-msi-0:3.5-3.el6.noarch"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2011-4517"
        },
        {
          "category": "external",
          "summary": "RHBZ#747726",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=747726"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2011-4517",
          "url": "https://www.cve.org/CVERecord?id=CVE-2011-4517"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2011-4517",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2011-4517"
        }
      ],
      "release_date": "2011-12-08T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2015-03-18T12:11:46+00:00",
          "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
          "product_ids": [
            "6Server-RHEV-S-3.5:rhevm-spice-client-0:3.5-3.el6.src",
            "6Server-RHEV-S-3.5:rhevm-spice-client-x64-cab-0:3.5-3.el6.noarch",
            "6Server-RHEV-S-3.5:rhevm-spice-client-x64-msi-0:3.5-3.el6.noarch",
            "6Server-RHEV-S-3.5:rhevm-spice-client-x86-cab-0:3.5-3.el6.noarch",
            "6Server-RHEV-S-3.5:rhevm-spice-client-x86-msi-0:3.5-3.el6.noarch"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2015:0698"
        }
      ],
      "scores": [
        {
          "cvss_v2": {
            "accessComplexity": "MEDIUM",
            "accessVector": "NETWORK",
            "authentication": "NONE",
            "availabilityImpact": "PARTIAL",
            "baseScore": 6.8,
            "confidentialityImpact": "PARTIAL",
            "integrityImpact": "PARTIAL",
            "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P",
            "version": "2.0"
          },
          "products": [
            "6Server-RHEV-S-3.5:rhevm-spice-client-0:3.5-3.el6.src",
            "6Server-RHEV-S-3.5:rhevm-spice-client-x64-cab-0:3.5-3.el6.noarch",
            "6Server-RHEV-S-3.5:rhevm-spice-client-x64-msi-0:3.5-3.el6.noarch",
            "6Server-RHEV-S-3.5:rhevm-spice-client-x86-cab-0:3.5-3.el6.noarch",
            "6Server-RHEV-S-3.5:rhevm-spice-client-x86-msi-0:3.5-3.el6.noarch"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Important"
        }
      ],
      "title": "jasper: heap buffer overflow flaws lead to arbitrary code execution (CERT VU#887409)"
    },
    {
      "acknowledgments": [
        {
          "names": [
            "oCERT"
          ]
        }
      ],
      "cve": "CVE-2014-8137",
      "cwe": {
        "id": "CWE-416",
        "name": "Use After Free"
      },
      "discovery_date": "2014-12-10T00:00:00+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "1173157"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "A double free flaw was found in the way JasPer parsed ICC color profiles in JPEG 2000 image files. A specially crafted file could cause an application using JasPer to crash or, possibly, execute arbitrary code.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "jasper: double-free in in jas_iccattrval_destroy() (oCERT-2014-012)",
          "title": "Vulnerability summary"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "6Server-RHEV-S-3.5:rhevm-spice-client-0:3.5-3.el6.src",
          "6Server-RHEV-S-3.5:rhevm-spice-client-x64-cab-0:3.5-3.el6.noarch",
          "6Server-RHEV-S-3.5:rhevm-spice-client-x64-msi-0:3.5-3.el6.noarch",
          "6Server-RHEV-S-3.5:rhevm-spice-client-x86-cab-0:3.5-3.el6.noarch",
          "6Server-RHEV-S-3.5:rhevm-spice-client-x86-msi-0:3.5-3.el6.noarch"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2014-8137"
        },
        {
          "category": "external",
          "summary": "RHBZ#1173157",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1173157"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2014-8137",
          "url": "https://www.cve.org/CVERecord?id=CVE-2014-8137"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2014-8137",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2014-8137"
        },
        {
          "category": "external",
          "summary": "http://www.ocert.org/advisories/ocert-2014-012.html",
          "url": "http://www.ocert.org/advisories/ocert-2014-012.html"
        }
      ],
      "release_date": "2014-12-18T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2015-03-18T12:11:46+00:00",
          "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
          "product_ids": [
            "6Server-RHEV-S-3.5:rhevm-spice-client-0:3.5-3.el6.src",
            "6Server-RHEV-S-3.5:rhevm-spice-client-x64-cab-0:3.5-3.el6.noarch",
            "6Server-RHEV-S-3.5:rhevm-spice-client-x64-msi-0:3.5-3.el6.noarch",
            "6Server-RHEV-S-3.5:rhevm-spice-client-x86-cab-0:3.5-3.el6.noarch",
            "6Server-RHEV-S-3.5:rhevm-spice-client-x86-msi-0:3.5-3.el6.noarch"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2015:0698"
        }
      ],
      "scores": [
        {
          "cvss_v2": {
            "accessComplexity": "HIGH",
            "accessVector": "NETWORK",
            "authentication": "NONE",
            "availabilityImpact": "PARTIAL",
            "baseScore": 5.1,
            "confidentialityImpact": "PARTIAL",
            "integrityImpact": "PARTIAL",
            "vectorString": "AV:N/AC:H/Au:N/C:P/I:P/A:P",
            "version": "2.0"
          },
          "products": [
            "6Server-RHEV-S-3.5:rhevm-spice-client-0:3.5-3.el6.src",
            "6Server-RHEV-S-3.5:rhevm-spice-client-x64-cab-0:3.5-3.el6.noarch",
            "6Server-RHEV-S-3.5:rhevm-spice-client-x64-msi-0:3.5-3.el6.noarch",
            "6Server-RHEV-S-3.5:rhevm-spice-client-x86-cab-0:3.5-3.el6.noarch",
            "6Server-RHEV-S-3.5:rhevm-spice-client-x86-msi-0:3.5-3.el6.noarch"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Low"
        }
      ],
      "title": "jasper: double-free in in jas_iccattrval_destroy() (oCERT-2014-012)"
    },
    {
      "acknowledgments": [
        {
          "names": [
            "oCERT"
          ]
        }
      ],
      "cve": "CVE-2014-8138",
      "cwe": {
        "id": "CWE-122",
        "name": "Heap-based Buffer Overflow"
      },
      "discovery_date": "2014-12-10T00:00:00+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "1173162"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "A heap-based buffer overflow flaw was found in the way JasPer decoded JPEG 2000 image files. A specially crafted file could cause an application using JasPer to crash or, possibly, execute arbitrary code.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "jasper: heap overflow in jp2_decode() (oCERT-2014-012)",
          "title": "Vulnerability summary"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "6Server-RHEV-S-3.5:rhevm-spice-client-0:3.5-3.el6.src",
          "6Server-RHEV-S-3.5:rhevm-spice-client-x64-cab-0:3.5-3.el6.noarch",
          "6Server-RHEV-S-3.5:rhevm-spice-client-x64-msi-0:3.5-3.el6.noarch",
          "6Server-RHEV-S-3.5:rhevm-spice-client-x86-cab-0:3.5-3.el6.noarch",
          "6Server-RHEV-S-3.5:rhevm-spice-client-x86-msi-0:3.5-3.el6.noarch"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2014-8138"
        },
        {
          "category": "external",
          "summary": "RHBZ#1173162",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1173162"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2014-8138",
          "url": "https://www.cve.org/CVERecord?id=CVE-2014-8138"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2014-8138",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2014-8138"
        },
        {
          "category": "external",
          "summary": "http://www.ocert.org/advisories/ocert-2014-012.html",
          "url": "http://www.ocert.org/advisories/ocert-2014-012.html"
        }
      ],
      "release_date": "2014-12-18T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2015-03-18T12:11:46+00:00",
          "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
          "product_ids": [
            "6Server-RHEV-S-3.5:rhevm-spice-client-0:3.5-3.el6.src",
            "6Server-RHEV-S-3.5:rhevm-spice-client-x64-cab-0:3.5-3.el6.noarch",
            "6Server-RHEV-S-3.5:rhevm-spice-client-x64-msi-0:3.5-3.el6.noarch",
            "6Server-RHEV-S-3.5:rhevm-spice-client-x86-cab-0:3.5-3.el6.noarch",
            "6Server-RHEV-S-3.5:rhevm-spice-client-x86-msi-0:3.5-3.el6.noarch"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2015:0698"
        }
      ],
      "scores": [
        {
          "cvss_v2": {
            "accessComplexity": "MEDIUM",
            "accessVector": "NETWORK",
            "authentication": "NONE",
            "availabilityImpact": "PARTIAL",
            "baseScore": 6.8,
            "confidentialityImpact": "PARTIAL",
            "integrityImpact": "PARTIAL",
            "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P",
            "version": "2.0"
          },
          "products": [
            "6Server-RHEV-S-3.5:rhevm-spice-client-0:3.5-3.el6.src",
            "6Server-RHEV-S-3.5:rhevm-spice-client-x64-cab-0:3.5-3.el6.noarch",
            "6Server-RHEV-S-3.5:rhevm-spice-client-x64-msi-0:3.5-3.el6.noarch",
            "6Server-RHEV-S-3.5:rhevm-spice-client-x86-cab-0:3.5-3.el6.noarch",
            "6Server-RHEV-S-3.5:rhevm-spice-client-x86-msi-0:3.5-3.el6.noarch"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Important"
        }
      ],
      "title": "jasper: heap overflow in jp2_decode() (oCERT-2014-012)"
    },
    {
      "acknowledgments": [
        {
          "names": [
            "oCERT"
          ]
        }
      ],
      "cve": "CVE-2014-8157",
      "cwe": {
        "id": "CWE-122",
        "name": "Heap-based Buffer Overflow"
      },
      "discovery_date": "2015-01-06T00:00:00+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "1179282"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "An off-by-one flaw, leading to a heap-based buffer overflow, was found in the way JasPer decoded JPEG 2000 image files. A specially crafted file could cause an application using JasPer to crash or, possibly, execute arbitrary code.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "jasper: dec-\u003enumtiles off-by-one check in jpc_dec_process_sot() (oCERT-2015-001)",
          "title": "Vulnerability summary"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "6Server-RHEV-S-3.5:rhevm-spice-client-0:3.5-3.el6.src",
          "6Server-RHEV-S-3.5:rhevm-spice-client-x64-cab-0:3.5-3.el6.noarch",
          "6Server-RHEV-S-3.5:rhevm-spice-client-x64-msi-0:3.5-3.el6.noarch",
          "6Server-RHEV-S-3.5:rhevm-spice-client-x86-cab-0:3.5-3.el6.noarch",
          "6Server-RHEV-S-3.5:rhevm-spice-client-x86-msi-0:3.5-3.el6.noarch"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2014-8157"
        },
        {
          "category": "external",
          "summary": "RHBZ#1179282",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1179282"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2014-8157",
          "url": "https://www.cve.org/CVERecord?id=CVE-2014-8157"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2014-8157",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2014-8157"
        },
        {
          "category": "external",
          "summary": "http://www.ocert.org/advisories/ocert-2015-001.html",
          "url": "http://www.ocert.org/advisories/ocert-2015-001.html"
        }
      ],
      "release_date": "2015-01-21T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2015-03-18T12:11:46+00:00",
          "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
          "product_ids": [
            "6Server-RHEV-S-3.5:rhevm-spice-client-0:3.5-3.el6.src",
            "6Server-RHEV-S-3.5:rhevm-spice-client-x64-cab-0:3.5-3.el6.noarch",
            "6Server-RHEV-S-3.5:rhevm-spice-client-x64-msi-0:3.5-3.el6.noarch",
            "6Server-RHEV-S-3.5:rhevm-spice-client-x86-cab-0:3.5-3.el6.noarch",
            "6Server-RHEV-S-3.5:rhevm-spice-client-x86-msi-0:3.5-3.el6.noarch"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2015:0698"
        }
      ],
      "scores": [
        {
          "cvss_v2": {
            "accessComplexity": "MEDIUM",
            "accessVector": "NETWORK",
            "authentication": "NONE",
            "availabilityImpact": "PARTIAL",
            "baseScore": 6.8,
            "confidentialityImpact": "PARTIAL",
            "integrityImpact": "PARTIAL",
            "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P",
            "version": "2.0"
          },
          "products": [
            "6Server-RHEV-S-3.5:rhevm-spice-client-0:3.5-3.el6.src",
            "6Server-RHEV-S-3.5:rhevm-spice-client-x64-cab-0:3.5-3.el6.noarch",
            "6Server-RHEV-S-3.5:rhevm-spice-client-x64-msi-0:3.5-3.el6.noarch",
            "6Server-RHEV-S-3.5:rhevm-spice-client-x86-cab-0:3.5-3.el6.noarch",
            "6Server-RHEV-S-3.5:rhevm-spice-client-x86-msi-0:3.5-3.el6.noarch"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Important"
        }
      ],
      "title": "jasper: dec-\u003enumtiles off-by-one check in jpc_dec_process_sot() (oCERT-2015-001)"
    },
    {
      "acknowledgments": [
        {
          "names": [
            "oCERT"
          ]
        }
      ],
      "cve": "CVE-2014-8158",
      "cwe": {
        "id": "CWE-770",
        "name": "Allocation of Resources Without Limits or Throttling"
      },
      "discovery_date": "2014-01-06T00:00:00+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "1179298"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "An unrestricted stack memory use flaw was found in the way JasPer decoded JPEG 2000 image files. A specially crafted file could cause an application using JasPer to crash or, possibly, execute arbitrary code.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "jasper: unrestricted stack memory use in jpc_qmfb.c (oCERT-2015-001)",
          "title": "Vulnerability summary"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "6Server-RHEV-S-3.5:rhevm-spice-client-0:3.5-3.el6.src",
          "6Server-RHEV-S-3.5:rhevm-spice-client-x64-cab-0:3.5-3.el6.noarch",
          "6Server-RHEV-S-3.5:rhevm-spice-client-x64-msi-0:3.5-3.el6.noarch",
          "6Server-RHEV-S-3.5:rhevm-spice-client-x86-cab-0:3.5-3.el6.noarch",
          "6Server-RHEV-S-3.5:rhevm-spice-client-x86-msi-0:3.5-3.el6.noarch"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2014-8158"
        },
        {
          "category": "external",
          "summary": "RHBZ#1179298",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1179298"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2014-8158",
          "url": "https://www.cve.org/CVERecord?id=CVE-2014-8158"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2014-8158",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2014-8158"
        },
        {
          "category": "external",
          "summary": "http://www.ocert.org/advisories/ocert-2015-001.html",
          "url": "http://www.ocert.org/advisories/ocert-2015-001.html"
        }
      ],
      "release_date": "2015-01-21T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2015-03-18T12:11:46+00:00",
          "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
          "product_ids": [
            "6Server-RHEV-S-3.5:rhevm-spice-client-0:3.5-3.el6.src",
            "6Server-RHEV-S-3.5:rhevm-spice-client-x64-cab-0:3.5-3.el6.noarch",
            "6Server-RHEV-S-3.5:rhevm-spice-client-x64-msi-0:3.5-3.el6.noarch",
            "6Server-RHEV-S-3.5:rhevm-spice-client-x86-cab-0:3.5-3.el6.noarch",
            "6Server-RHEV-S-3.5:rhevm-spice-client-x86-msi-0:3.5-3.el6.noarch"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2015:0698"
        }
      ],
      "scores": [
        {
          "cvss_v2": {
            "accessComplexity": "HIGH",
            "accessVector": "NETWORK",
            "authentication": "NONE",
            "availabilityImpact": "PARTIAL",
            "baseScore": 5.1,
            "confidentialityImpact": "PARTIAL",
            "integrityImpact": "PARTIAL",
            "vectorString": "AV:N/AC:H/Au:N/C:P/I:P/A:P",
            "version": "2.0"
          },
          "products": [
            "6Server-RHEV-S-3.5:rhevm-spice-client-0:3.5-3.el6.src",
            "6Server-RHEV-S-3.5:rhevm-spice-client-x64-cab-0:3.5-3.el6.noarch",
            "6Server-RHEV-S-3.5:rhevm-spice-client-x64-msi-0:3.5-3.el6.noarch",
            "6Server-RHEV-S-3.5:rhevm-spice-client-x86-cab-0:3.5-3.el6.noarch",
            "6Server-RHEV-S-3.5:rhevm-spice-client-x86-msi-0:3.5-3.el6.noarch"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Moderate"
        }
      ],
      "title": "jasper: unrestricted stack memory use in jpc_qmfb.c (oCERT-2015-001)"
    },
    {
      "acknowledgments": [
        {
          "names": [
            "oCERT"
          ]
        }
      ],
      "cve": "CVE-2014-9029",
      "cwe": {
        "id": "CWE-122",
        "name": "Heap-based Buffer Overflow"
      },
      "discovery_date": "2014-11-20T00:00:00+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "1167537"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "Multiple off-by-one flaws, leading to heap-based buffer overflows, were found in the way JasPer decoded JPEG 2000 files. A specially crafted file could cause an application using JasPer to crash or, possibly, execute arbitrary code.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "jasper: incorrect component number check in COC, RGN and QCC marker segment decoders (oCERT-2014-009)",
          "title": "Vulnerability summary"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "6Server-RHEV-S-3.5:rhevm-spice-client-0:3.5-3.el6.src",
          "6Server-RHEV-S-3.5:rhevm-spice-client-x64-cab-0:3.5-3.el6.noarch",
          "6Server-RHEV-S-3.5:rhevm-spice-client-x64-msi-0:3.5-3.el6.noarch",
          "6Server-RHEV-S-3.5:rhevm-spice-client-x86-cab-0:3.5-3.el6.noarch",
          "6Server-RHEV-S-3.5:rhevm-spice-client-x86-msi-0:3.5-3.el6.noarch"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2014-9029"
        },
        {
          "category": "external",
          "summary": "RHBZ#1167537",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1167537"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2014-9029",
          "url": "https://www.cve.org/CVERecord?id=CVE-2014-9029"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2014-9029",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2014-9029"
        },
        {
          "category": "external",
          "summary": "http://www.ocert.org/advisories/ocert-2014-009.html",
          "url": "http://www.ocert.org/advisories/ocert-2014-009.html"
        }
      ],
      "release_date": "2014-12-04T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2015-03-18T12:11:46+00:00",
          "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
          "product_ids": [
            "6Server-RHEV-S-3.5:rhevm-spice-client-0:3.5-3.el6.src",
            "6Server-RHEV-S-3.5:rhevm-spice-client-x64-cab-0:3.5-3.el6.noarch",
            "6Server-RHEV-S-3.5:rhevm-spice-client-x64-msi-0:3.5-3.el6.noarch",
            "6Server-RHEV-S-3.5:rhevm-spice-client-x86-cab-0:3.5-3.el6.noarch",
            "6Server-RHEV-S-3.5:rhevm-spice-client-x86-msi-0:3.5-3.el6.noarch"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2015:0698"
        }
      ],
      "scores": [
        {
          "cvss_v2": {
            "accessComplexity": "MEDIUM",
            "accessVector": "NETWORK",
            "authentication": "NONE",
            "availabilityImpact": "PARTIAL",
            "baseScore": 6.8,
            "confidentialityImpact": "PARTIAL",
            "integrityImpact": "PARTIAL",
            "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P",
            "version": "2.0"
          },
          "products": [
            "6Server-RHEV-S-3.5:rhevm-spice-client-0:3.5-3.el6.src",
            "6Server-RHEV-S-3.5:rhevm-spice-client-x64-cab-0:3.5-3.el6.noarch",
            "6Server-RHEV-S-3.5:rhevm-spice-client-x64-msi-0:3.5-3.el6.noarch",
            "6Server-RHEV-S-3.5:rhevm-spice-client-x86-cab-0:3.5-3.el6.noarch",
            "6Server-RHEV-S-3.5:rhevm-spice-client-x86-msi-0:3.5-3.el6.noarch"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Important"
        }
      ],
      "title": "jasper: incorrect component number check in COC, RGN and QCC marker segment decoders (oCERT-2014-009)"
    }
  ]
}

RHSA-2015_0698

Vulnerability from csaf_redhat - Published: 2015-03-18 12:11 - Updated: 2024-11-14 16:29

Summary

Red Hat Security Advisory: rhevm-spice-client security, bug fix, and enhancement update

Severity

Important

Notes

CVE-2008-3520

Multiple integer overflows in JasPer 1.900.1 might allow context-dependent attackers to have an unknown impact via a crafted image file, related to integer multiplication for memory allocation.

6.8 ()


                        
                          AV:N/AC:M/Au:N/C:P/I:P/A:P

CWE-190 - Integer Overflow or Wraparound

Affected products

Fixed 5 products

Product	Version	Remediation
Unresolved product id: 6Server-RHEV-S-3.5:rhevm-spice-client-0:3.5-3.el6.src	—	Vendor Fix fix
Unresolved product id: 6Server-RHEV-S-3.5:rhevm-spice-client-x64-cab-0:3.5-3.el6.noarch	—	Vendor Fix fix
Unresolved product id: 6Server-RHEV-S-3.5:rhevm-spice-client-x64-msi-0:3.5-3.el6.noarch	—	Vendor Fix fix
Unresolved product id: 6Server-RHEV-S-3.5:rhevm-spice-client-x86-cab-0:3.5-3.el6.noarch	—	Vendor Fix fix
Unresolved product id: 6Server-RHEV-S-3.5:rhevm-spice-client-x86-msi-0:3.5-3.el6.noarch	—	Vendor Fix fix

Threats

Impact Moderate

CVE-2008-3522

6.8 ()


                        
                          AV:N/AC:M/Au:N/C:P/I:P/A:P

CWE-122 - Heap-based Buffer Overflow

Affected products

Fixed 5 products

Product	Version	Remediation
Unresolved product id: 6Server-RHEV-S-3.5:rhevm-spice-client-0:3.5-3.el6.src	—	Vendor Fix fix
Unresolved product id: 6Server-RHEV-S-3.5:rhevm-spice-client-x64-cab-0:3.5-3.el6.noarch	—	Vendor Fix fix
Unresolved product id: 6Server-RHEV-S-3.5:rhevm-spice-client-x64-msi-0:3.5-3.el6.noarch	—	Vendor Fix fix
Unresolved product id: 6Server-RHEV-S-3.5:rhevm-spice-client-x86-cab-0:3.5-3.el6.noarch	—	Vendor Fix fix
Unresolved product id: 6Server-RHEV-S-3.5:rhevm-spice-client-x86-msi-0:3.5-3.el6.noarch	—	Vendor Fix fix

Threats

Impact Moderate

CVE-2011-4516

6.8 ()


                        
                          AV:N/AC:M/Au:N/C:P/I:P/A:P

CWE-122 - Heap-based Buffer Overflow

Affected products

Fixed 5 products

Product	Version	Remediation
Unresolved product id: 6Server-RHEV-S-3.5:rhevm-spice-client-0:3.5-3.el6.src	—	Vendor Fix fix
Unresolved product id: 6Server-RHEV-S-3.5:rhevm-spice-client-x64-cab-0:3.5-3.el6.noarch	—	Vendor Fix fix
Unresolved product id: 6Server-RHEV-S-3.5:rhevm-spice-client-x64-msi-0:3.5-3.el6.noarch	—	Vendor Fix fix
Unresolved product id: 6Server-RHEV-S-3.5:rhevm-spice-client-x86-cab-0:3.5-3.el6.noarch	—	Vendor Fix fix
Unresolved product id: 6Server-RHEV-S-3.5:rhevm-spice-client-x86-msi-0:3.5-3.el6.noarch	—	Vendor Fix fix

Threats

Impact Important

CVE-2011-4517

6.8 ()


                        
                          AV:N/AC:M/Au:N/C:P/I:P/A:P

CWE-122 - Heap-based Buffer Overflow

Affected products

Fixed 5 products

Product	Version	Remediation
Unresolved product id: 6Server-RHEV-S-3.5:rhevm-spice-client-0:3.5-3.el6.src	—	Vendor Fix fix
Unresolved product id: 6Server-RHEV-S-3.5:rhevm-spice-client-x64-cab-0:3.5-3.el6.noarch	—	Vendor Fix fix
Unresolved product id: 6Server-RHEV-S-3.5:rhevm-spice-client-x64-msi-0:3.5-3.el6.noarch	—	Vendor Fix fix
Unresolved product id: 6Server-RHEV-S-3.5:rhevm-spice-client-x86-cab-0:3.5-3.el6.noarch	—	Vendor Fix fix
Unresolved product id: 6Server-RHEV-S-3.5:rhevm-spice-client-x86-msi-0:3.5-3.el6.noarch	—	Vendor Fix fix

Threats

Impact Important

CVE-2014-8137

5.1 ()


                        
                          AV:N/AC:H/Au:N/C:P/I:P/A:P

CWE-416 - Use After Free

Affected products

Fixed 5 products

Product	Version	Remediation
Unresolved product id: 6Server-RHEV-S-3.5:rhevm-spice-client-0:3.5-3.el6.src	—	Vendor Fix fix
Unresolved product id: 6Server-RHEV-S-3.5:rhevm-spice-client-x64-cab-0:3.5-3.el6.noarch	—	Vendor Fix fix
Unresolved product id: 6Server-RHEV-S-3.5:rhevm-spice-client-x64-msi-0:3.5-3.el6.noarch	—	Vendor Fix fix
Unresolved product id: 6Server-RHEV-S-3.5:rhevm-spice-client-x86-cab-0:3.5-3.el6.noarch	—	Vendor Fix fix
Unresolved product id: 6Server-RHEV-S-3.5:rhevm-spice-client-x86-msi-0:3.5-3.el6.noarch	—	Vendor Fix fix

Threats

Impact Low

CVE-2014-8138

6.8 ()


                        
                          AV:N/AC:M/Au:N/C:P/I:P/A:P

CWE-122 - Heap-based Buffer Overflow

Affected products

Fixed 5 products

Product	Version	Remediation
Unresolved product id: 6Server-RHEV-S-3.5:rhevm-spice-client-0:3.5-3.el6.src	—	Vendor Fix fix
Unresolved product id: 6Server-RHEV-S-3.5:rhevm-spice-client-x64-cab-0:3.5-3.el6.noarch	—	Vendor Fix fix
Unresolved product id: 6Server-RHEV-S-3.5:rhevm-spice-client-x64-msi-0:3.5-3.el6.noarch	—	Vendor Fix fix
Unresolved product id: 6Server-RHEV-S-3.5:rhevm-spice-client-x86-cab-0:3.5-3.el6.noarch	—	Vendor Fix fix
Unresolved product id: 6Server-RHEV-S-3.5:rhevm-spice-client-x86-msi-0:3.5-3.el6.noarch	—	Vendor Fix fix

Threats

Impact Important

CVE-2014-8157

6.8 ()


                        
                          AV:N/AC:M/Au:N/C:P/I:P/A:P

CWE-122 - Heap-based Buffer Overflow

Affected products

Fixed 5 products

Product	Version	Remediation
Unresolved product id: 6Server-RHEV-S-3.5:rhevm-spice-client-0:3.5-3.el6.src	—	Vendor Fix fix
Unresolved product id: 6Server-RHEV-S-3.5:rhevm-spice-client-x64-cab-0:3.5-3.el6.noarch	—	Vendor Fix fix
Unresolved product id: 6Server-RHEV-S-3.5:rhevm-spice-client-x64-msi-0:3.5-3.el6.noarch	—	Vendor Fix fix
Unresolved product id: 6Server-RHEV-S-3.5:rhevm-spice-client-x86-cab-0:3.5-3.el6.noarch	—	Vendor Fix fix
Unresolved product id: 6Server-RHEV-S-3.5:rhevm-spice-client-x86-msi-0:3.5-3.el6.noarch	—	Vendor Fix fix

Threats

Impact Important

CVE-2014-8158

5.1 ()


                        
                          AV:N/AC:H/Au:N/C:P/I:P/A:P

CWE-770 - Allocation of Resources Without Limits or Throttling

Affected products

Fixed 5 products

Product	Version	Remediation
Unresolved product id: 6Server-RHEV-S-3.5:rhevm-spice-client-0:3.5-3.el6.src	—	Vendor Fix fix
Unresolved product id: 6Server-RHEV-S-3.5:rhevm-spice-client-x64-cab-0:3.5-3.el6.noarch	—	Vendor Fix fix
Unresolved product id: 6Server-RHEV-S-3.5:rhevm-spice-client-x64-msi-0:3.5-3.el6.noarch	—	Vendor Fix fix
Unresolved product id: 6Server-RHEV-S-3.5:rhevm-spice-client-x86-cab-0:3.5-3.el6.noarch	—	Vendor Fix fix
Unresolved product id: 6Server-RHEV-S-3.5:rhevm-spice-client-x86-msi-0:3.5-3.el6.noarch	—	Vendor Fix fix

Threats

Impact Moderate

CVE-2014-9029

6.8 ()


                        
                          AV:N/AC:M/Au:N/C:P/I:P/A:P

CWE-122 - Heap-based Buffer Overflow

Affected products

Fixed 5 products

Product	Version	Remediation
Unresolved product id: 6Server-RHEV-S-3.5:rhevm-spice-client-0:3.5-3.el6.src	—	Vendor Fix fix
Unresolved product id: 6Server-RHEV-S-3.5:rhevm-spice-client-x64-cab-0:3.5-3.el6.noarch	—	Vendor Fix fix
Unresolved product id: 6Server-RHEV-S-3.5:rhevm-spice-client-x64-msi-0:3.5-3.el6.noarch	—	Vendor Fix fix
Unresolved product id: 6Server-RHEV-S-3.5:rhevm-spice-client-x86-cab-0:3.5-3.el6.noarch	—	Vendor Fix fix
Unresolved product id: 6Server-RHEV-S-3.5:rhevm-spice-client-x86-msi-0:3.5-3.el6.noarch	—	Vendor Fix fix

Threats

Impact Important

References

51 references

URL	Category
https://access.redhat.com/errata/RHSA-2015:0698	self
https://access.redhat.com/security/updates/classi…	external
https://bugzilla.redhat.com/show_bug.cgi?id=461476	external
https://bugzilla.redhat.com/show_bug.cgi?id=461478	external
https://bugzilla.redhat.com/show_bug.cgi?id=747726	external
https://bugzilla.redhat.com/show_bug.cgi?id=1167537	external
https://bugzilla.redhat.com/show_bug.cgi?id=1172126	external
https://bugzilla.redhat.com/show_bug.cgi?id=1173157	external
https://bugzilla.redhat.com/show_bug.cgi?id=1173162	external
https://bugzilla.redhat.com/show_bug.cgi?id=1179282	external
https://bugzilla.redhat.com/show_bug.cgi?id=1179298	external
https://bugzilla.redhat.com/show_bug.cgi?id=1187270	external
https://security.access.redhat.com/data/csaf/v2/a…	self
https://access.redhat.com/security/cve/CVE-2008-3520	self
https://bugzilla.redhat.com/show_bug.cgi?id=461476	external
https://www.cve.org/CVERecord?id=CVE-2008-3520	external
https://nvd.nist.gov/vuln/detail/CVE-2008-3520	external
https://access.redhat.com/security/cve/CVE-2008-3522	self
https://bugzilla.redhat.com/show_bug.cgi?id=461478	external
https://www.cve.org/CVERecord?id=CVE-2008-3522	external
https://nvd.nist.gov/vuln/detail/CVE-2008-3522	external
https://access.redhat.com/security/cve/CVE-2011-4516	self
https://bugzilla.redhat.com/show_bug.cgi?id=747726	external
https://www.cve.org/CVERecord?id=CVE-2011-4516	external
https://nvd.nist.gov/vuln/detail/CVE-2011-4516	external
https://access.redhat.com/security/cve/CVE-2011-4517	self
https://www.cve.org/CVERecord?id=CVE-2011-4517	external
https://nvd.nist.gov/vuln/detail/CVE-2011-4517	external
https://access.redhat.com/security/cve/CVE-2014-8137	self
https://bugzilla.redhat.com/show_bug.cgi?id=1173157	external
https://www.cve.org/CVERecord?id=CVE-2014-8137	external
https://nvd.nist.gov/vuln/detail/CVE-2014-8137	external
http://www.ocert.org/advisories/ocert-2014-012.html	external
https://access.redhat.com/security/cve/CVE-2014-8138	self
https://bugzilla.redhat.com/show_bug.cgi?id=1173162	external
https://www.cve.org/CVERecord?id=CVE-2014-8138	external
https://nvd.nist.gov/vuln/detail/CVE-2014-8138	external
https://access.redhat.com/security/cve/CVE-2014-8157	self
https://bugzilla.redhat.com/show_bug.cgi?id=1179282	external
https://www.cve.org/CVERecord?id=CVE-2014-8157	external
https://nvd.nist.gov/vuln/detail/CVE-2014-8157	external
http://www.ocert.org/advisories/ocert-2015-001.html	external
https://access.redhat.com/security/cve/CVE-2014-8158	self
https://bugzilla.redhat.com/show_bug.cgi?id=1179298	external
https://www.cve.org/CVERecord?id=CVE-2014-8158	external
https://nvd.nist.gov/vuln/detail/CVE-2014-8158	external
https://access.redhat.com/security/cve/CVE-2014-9029	self
https://bugzilla.redhat.com/show_bug.cgi?id=1167537	external
https://www.cve.org/CVERecord?id=CVE-2014-9029	external
https://nvd.nist.gov/vuln/detail/CVE-2014-9029	external
http://www.ocert.org/advisories/ocert-2014-009.html	external

Acknowledgments

CERT Coordination Center Jonathan Foote

oCERT

JSON

To clipboard

{
  "document": {
    "aggregate_severity": {
      "namespace": "https://access.redhat.com/security/updates/classification/",
      "text": "Important"
    },
    "category": "csaf_security_advisory",
    "csaf_version": "2.0",
    "distribution": {
      "text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
      "tlp": {
        "label": "WHITE",
        "url": "https://www.first.org/tlp/"
      }
    },
    "lang": "en",
    "notes": [
      {
        "category": "summary",
        "text": "Updated rhevm-spice-client packages that fix multiple security issues,\nseveral bugs, and add one enhancement are now available for Red Hat\nEnterprise Virtualization Manager 3.\n\nRed Hat Product Security has rated this update as having Important security\nimpact. Common Vulnerability Scoring System (CVSS) base scores, which give\ndetailed severity ratings, are available for each vulnerability from the\nCVE links in the References section.",
        "title": "Topic"
      },
      {
        "category": "general",
        "text": "Red Hat Enterprise Virtualization Manager provides access to virtual\nmachines using SPICE. These SPICE client packages provide the SPICE client\nand usbclerk service for both Windows 32-bit operating systems and Windows\n64-bit operating systems.\n\nThis update adds support for the TLS Fallback Signaling Cipher Suite Value\n(TLS_FALLBACK_SCSV), which can be used to prevent protocol downgrade\nattacks against applications which re-connect using a lower SSL/TLS\nprotocol version when the initial connection indicating the highest\nsupported protocol version fails.\n\nThis can prevent a forceful downgrade of the communication to SSL 3.0.\nThe SSL 3.0 protocol was found to be vulnerable to the padding oracle\nattack when using block cipher suites in cipher block chaining (CBC) mode.\nThis issue is identified as CVE-2014-3566, and also known under the alias\nPOODLE. This SSL 3.0 protocol flaw will not be addressed in a future\nupdate; it is recommended that users configure their applications to\nrequire at least TLS protocol version 1.0 for secure communication.\n\nFor additional information about this flaw, see the Knowledgebase article\nat https://access.redhat.com/articles/1232123\n\nMultiple flaws were found in the way JasPer decoded JPEG 2000 image files.\nA specially crafted file could cause an application using JasPer to crash\nor, possibly, execute arbitrary code. (CVE-2014-8138, CVE-2014-8157,\nCVE-2014-8158, CVE-2014-9029, CVE-2014-8137, CVE-2011-4516, CVE-2011-4517,\nCVE-2008-3520, CVE-2008-3522)\n\nRed Hat would like to thank oCERT for reporting CVE-2014-8137,\nCVE-2014-8138, CVE-2014-8157, CVE-2014-8158, CVE-2014-9029, CVE-2011-4516,\nand CVE-2011-4517. oCERT acknowledges Jose Duart of the Google Security\nTeam as the original reporter of CVE-2014-8137 and CVE-2014-8138; and\npyddeh as the original reporter of CVE-2014-8157 and CVE-2014-8158.\n\nThe mingw-openssl and mingw-jasper packages have been upgraded to the\nlatest upstream version, which provides a number of bug fixes and\nenhancements over the previous version. (BZ#1187585)\n\nThis update also fixes the following bugs:\n\n* Previously, a guest system installed with tools incorrectly always\nstarted in full screen mode, even when the \"Open in Full Screen\" option was\nunchecked in console options. Now, when connecting in window mode with the\noption unchecked, the guest system starts in a window as expected.\n(BZ#1172126)\n\n* Prior to this update, copying and pasting of images from the client to\nthe guest did not work when spice-gtk was built from upstream. Now, images\ncan be copied and pasted without problems. (BZ#1187270)\n\nIn addition, this update adds the following enhancement:\n\n* Administrators now have the option of automatic multiuser installation of\nvirt-viewer onto many client workstations. (BZ#1187272)\n\nAll rhevm-spice-client users are advised to upgrade to these updated\npackages, which correct these issues and add these enhancement.",
        "title": "Details"
      },
      {
        "category": "legal_disclaimer",
        "text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
        "title": "Terms of Use"
      }
    ],
    "publisher": {
      "category": "vendor",
      "contact_details": "https://access.redhat.com/security/team/contact/",
      "issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
      "name": "Red Hat Product Security",
      "namespace": "https://www.redhat.com"
    },
    "references": [
      {
        "category": "self",
        "summary": "https://access.redhat.com/errata/RHSA-2015:0698",
        "url": "https://access.redhat.com/errata/RHSA-2015:0698"
      },
      {
        "category": "external",
        "summary": "https://access.redhat.com/security/updates/classification/#important",
        "url": "https://access.redhat.com/security/updates/classification/#important"
      },
      {
        "category": "external",
        "summary": "461476",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=461476"
      },
      {
        "category": "external",
        "summary": "461478",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=461478"
      },
      {
        "category": "external",
        "summary": "747726",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=747726"
      },
      {
        "category": "external",
        "summary": "1167537",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1167537"
      },
      {
        "category": "external",
        "summary": "1172126",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1172126"
      },
      {
        "category": "external",
        "summary": "1173157",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1173157"
      },
      {
        "category": "external",
        "summary": "1173162",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1173162"
      },
      {
        "category": "external",
        "summary": "1179282",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1179282"
      },
      {
        "category": "external",
        "summary": "1179298",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1179298"
      },
      {
        "category": "external",
        "summary": "1187270",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1187270"
      },
      {
        "category": "self",
        "summary": "Canonical URL",
        "url": "https://security.access.redhat.com/data/csaf/v2/advisories/2015/rhsa-2015_0698.json"
      }
    ],
    "title": "Red Hat Security Advisory: rhevm-spice-client security, bug fix, and enhancement update",
    "tracking": {
      "current_release_date": "2024-11-14T16:29:52+00:00",
      "generator": {
        "date": "2024-11-14T16:29:52+00:00",
        "engine": {
          "name": "Red Hat SDEngine",
          "version": "4.2.0"
        }
      },
      "id": "RHSA-2015:0698",
      "initial_release_date": "2015-03-18T12:11:46+00:00",
      "revision_history": [
        {
          "date": "2015-03-18T12:11:46+00:00",
          "number": "1",
          "summary": "Initial version"
        },
        {
          "date": "2015-03-18T12:11:47+00:00",
          "number": "2",
          "summary": "Last updated version"
        },
        {
          "date": "2024-11-14T16:29:52+00:00",
          "number": "3",
          "summary": "Last generated version"
        }
      ],
      "status": "final",
      "version": "3"
    }
  },
  "product_tree": {
    "branches": [
      {
        "branches": [
          {
            "branches": [
              {
                "category": "product_name",
                "name": "RHEV-M 3.5",
                "product": {
                  "name": "RHEV-M 3.5",
                  "product_id": "6Server-RHEV-S-3.5",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:redhat:rhev_manager:3"
                  }
                }
              }
            ],
            "category": "product_family",
            "name": "Red Hat Virtualization"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "rhevm-spice-client-0:3.5-3.el6.src",
                "product": {
                  "name": "rhevm-spice-client-0:3.5-3.el6.src",
                  "product_id": "rhevm-spice-client-0:3.5-3.el6.src",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/rhevm-spice-client@3.5-3.el6?arch=src"
                  }
                }
              }
            ],
            "category": "architecture",
            "name": "src"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "rhevm-spice-client-x86-cab-0:3.5-3.el6.noarch",
                "product": {
                  "name": "rhevm-spice-client-x86-cab-0:3.5-3.el6.noarch",
                  "product_id": "rhevm-spice-client-x86-cab-0:3.5-3.el6.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/rhevm-spice-client-x86-cab@3.5-3.el6?arch=noarch"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "rhevm-spice-client-x64-msi-0:3.5-3.el6.noarch",
                "product": {
                  "name": "rhevm-spice-client-x64-msi-0:3.5-3.el6.noarch",
                  "product_id": "rhevm-spice-client-x64-msi-0:3.5-3.el6.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/rhevm-spice-client-x64-msi@3.5-3.el6?arch=noarch"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "rhevm-spice-client-x86-msi-0:3.5-3.el6.noarch",
                "product": {
                  "name": "rhevm-spice-client-x86-msi-0:3.5-3.el6.noarch",
                  "product_id": "rhevm-spice-client-x86-msi-0:3.5-3.el6.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/rhevm-spice-client-x86-msi@3.5-3.el6?arch=noarch"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "rhevm-spice-client-x64-cab-0:3.5-3.el6.noarch",
                "product": {
                  "name": "rhevm-spice-client-x64-cab-0:3.5-3.el6.noarch",
                  "product_id": "rhevm-spice-client-x64-cab-0:3.5-3.el6.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/rhevm-spice-client-x64-cab@3.5-3.el6?arch=noarch"
                  }
                }
              }
            ],
            "category": "architecture",
            "name": "noarch"
          }
        ],
        "category": "vendor",
        "name": "Red Hat"
      }
    ],
    "relationships": [
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "rhevm-spice-client-0:3.5-3.el6.src as a component of RHEV-M 3.5",
          "product_id": "6Server-RHEV-S-3.5:rhevm-spice-client-0:3.5-3.el6.src"
        },
        "product_reference": "rhevm-spice-client-0:3.5-3.el6.src",
        "relates_to_product_reference": "6Server-RHEV-S-3.5"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "rhevm-spice-client-x64-cab-0:3.5-3.el6.noarch as a component of RHEV-M 3.5",
          "product_id": "6Server-RHEV-S-3.5:rhevm-spice-client-x64-cab-0:3.5-3.el6.noarch"
        },
        "product_reference": "rhevm-spice-client-x64-cab-0:3.5-3.el6.noarch",
        "relates_to_product_reference": "6Server-RHEV-S-3.5"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "rhevm-spice-client-x64-msi-0:3.5-3.el6.noarch as a component of RHEV-M 3.5",
          "product_id": "6Server-RHEV-S-3.5:rhevm-spice-client-x64-msi-0:3.5-3.el6.noarch"
        },
        "product_reference": "rhevm-spice-client-x64-msi-0:3.5-3.el6.noarch",
        "relates_to_product_reference": "6Server-RHEV-S-3.5"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "rhevm-spice-client-x86-cab-0:3.5-3.el6.noarch as a component of RHEV-M 3.5",
          "product_id": "6Server-RHEV-S-3.5:rhevm-spice-client-x86-cab-0:3.5-3.el6.noarch"
        },
        "product_reference": "rhevm-spice-client-x86-cab-0:3.5-3.el6.noarch",
        "relates_to_product_reference": "6Server-RHEV-S-3.5"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "rhevm-spice-client-x86-msi-0:3.5-3.el6.noarch as a component of RHEV-M 3.5",
          "product_id": "6Server-RHEV-S-3.5:rhevm-spice-client-x86-msi-0:3.5-3.el6.noarch"
        },
        "product_reference": "rhevm-spice-client-x86-msi-0:3.5-3.el6.noarch",
        "relates_to_product_reference": "6Server-RHEV-S-3.5"
      }
    ]
  },
  "vulnerabilities": [
    {
      "cve": "CVE-2008-3520",
      "cwe": {
        "id": "CWE-190",
        "name": "Integer Overflow or Wraparound"
      },
      "discovery_date": "2008-05-19T00:00:00+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "461476"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "Multiple integer overflows in JasPer 1.900.1 might allow context-dependent attackers to have an unknown impact via a crafted image file, related to integer multiplication for memory allocation.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "jasper: multiple integer overflows in jas_alloc calls",
          "title": "Vulnerability summary"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "6Server-RHEV-S-3.5:rhevm-spice-client-0:3.5-3.el6.src",
          "6Server-RHEV-S-3.5:rhevm-spice-client-x64-cab-0:3.5-3.el6.noarch",
          "6Server-RHEV-S-3.5:rhevm-spice-client-x64-msi-0:3.5-3.el6.noarch",
          "6Server-RHEV-S-3.5:rhevm-spice-client-x86-cab-0:3.5-3.el6.noarch",
          "6Server-RHEV-S-3.5:rhevm-spice-client-x86-msi-0:3.5-3.el6.noarch"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2008-3520"
        },
        {
          "category": "external",
          "summary": "RHBZ#461476",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=461476"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2008-3520",
          "url": "https://www.cve.org/CVERecord?id=CVE-2008-3520"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2008-3520",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2008-3520"
        }
      ],
      "release_date": "2008-09-08T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2015-03-18T12:11:46+00:00",
          "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
          "product_ids": [
            "6Server-RHEV-S-3.5:rhevm-spice-client-0:3.5-3.el6.src",
            "6Server-RHEV-S-3.5:rhevm-spice-client-x64-cab-0:3.5-3.el6.noarch",
            "6Server-RHEV-S-3.5:rhevm-spice-client-x64-msi-0:3.5-3.el6.noarch",
            "6Server-RHEV-S-3.5:rhevm-spice-client-x86-cab-0:3.5-3.el6.noarch",
            "6Server-RHEV-S-3.5:rhevm-spice-client-x86-msi-0:3.5-3.el6.noarch"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2015:0698"
        }
      ],
      "scores": [
        {
          "cvss_v2": {
            "accessComplexity": "MEDIUM",
            "accessVector": "NETWORK",
            "authentication": "NONE",
            "availabilityImpact": "PARTIAL",
            "baseScore": 6.8,
            "confidentialityImpact": "PARTIAL",
            "integrityImpact": "PARTIAL",
            "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P",
            "version": "2.0"
          },
          "products": [
            "6Server-RHEV-S-3.5:rhevm-spice-client-0:3.5-3.el6.src",
            "6Server-RHEV-S-3.5:rhevm-spice-client-x64-cab-0:3.5-3.el6.noarch",
            "6Server-RHEV-S-3.5:rhevm-spice-client-x64-msi-0:3.5-3.el6.noarch",
            "6Server-RHEV-S-3.5:rhevm-spice-client-x86-cab-0:3.5-3.el6.noarch",
            "6Server-RHEV-S-3.5:rhevm-spice-client-x86-msi-0:3.5-3.el6.noarch"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Moderate"
        }
      ],
      "title": "jasper: multiple integer overflows in jas_alloc calls"
    },
    {
      "cve": "CVE-2008-3522",
      "cwe": {
        "id": "CWE-122",
        "name": "Heap-based Buffer Overflow"
      },
      "discovery_date": "2008-05-19T00:00:00+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "461478"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "Buffer overflow in the jas_stream_printf function in libjasper/base/jas_stream.c in JasPer 1.900.1 might allow context-dependent attackers to have an unknown impact via vectors related to the mif_hdr_put function and use of vsprintf.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "jasper: possible buffer overflow in jas_stream_printf()",
          "title": "Vulnerability summary"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "6Server-RHEV-S-3.5:rhevm-spice-client-0:3.5-3.el6.src",
          "6Server-RHEV-S-3.5:rhevm-spice-client-x64-cab-0:3.5-3.el6.noarch",
          "6Server-RHEV-S-3.5:rhevm-spice-client-x64-msi-0:3.5-3.el6.noarch",
          "6Server-RHEV-S-3.5:rhevm-spice-client-x86-cab-0:3.5-3.el6.noarch",
          "6Server-RHEV-S-3.5:rhevm-spice-client-x86-msi-0:3.5-3.el6.noarch"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2008-3522"
        },
        {
          "category": "external",
          "summary": "RHBZ#461478",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=461478"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2008-3522",
          "url": "https://www.cve.org/CVERecord?id=CVE-2008-3522"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2008-3522",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2008-3522"
        }
      ],
      "release_date": "2008-09-08T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2015-03-18T12:11:46+00:00",
          "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
          "product_ids": [
            "6Server-RHEV-S-3.5:rhevm-spice-client-0:3.5-3.el6.src",
            "6Server-RHEV-S-3.5:rhevm-spice-client-x64-cab-0:3.5-3.el6.noarch",
            "6Server-RHEV-S-3.5:rhevm-spice-client-x64-msi-0:3.5-3.el6.noarch",
            "6Server-RHEV-S-3.5:rhevm-spice-client-x86-cab-0:3.5-3.el6.noarch",
            "6Server-RHEV-S-3.5:rhevm-spice-client-x86-msi-0:3.5-3.el6.noarch"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2015:0698"
        }
      ],
      "scores": [
        {
          "cvss_v2": {
            "accessComplexity": "MEDIUM",
            "accessVector": "NETWORK",
            "authentication": "NONE",
            "availabilityImpact": "PARTIAL",
            "baseScore": 6.8,
            "confidentialityImpact": "PARTIAL",
            "integrityImpact": "PARTIAL",
            "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P",
            "version": "2.0"
          },
          "products": [
            "6Server-RHEV-S-3.5:rhevm-spice-client-0:3.5-3.el6.src",
            "6Server-RHEV-S-3.5:rhevm-spice-client-x64-cab-0:3.5-3.el6.noarch",
            "6Server-RHEV-S-3.5:rhevm-spice-client-x64-msi-0:3.5-3.el6.noarch",
            "6Server-RHEV-S-3.5:rhevm-spice-client-x86-cab-0:3.5-3.el6.noarch",
            "6Server-RHEV-S-3.5:rhevm-spice-client-x86-msi-0:3.5-3.el6.noarch"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Moderate"
        }
      ],
      "title": "jasper: possible buffer overflow in jas_stream_printf()"
    },
    {
      "acknowledgments": [
        {
          "names": [
            "Jonathan Foote"
          ],
          "organization": "CERT Coordination Center"
        }
      ],
      "cve": "CVE-2011-4516",
      "cwe": {
        "id": "CWE-122",
        "name": "Heap-based Buffer Overflow"
      },
      "discovery_date": "2011-10-20T00:00:00+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "747726"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "A heap-based buffer overflow flaw was found in the way JasPer decoded JPEG 2000 compressed image files. An attacker could create a malicious JPEG 2000 compressed image file that, when opened, would cause applications that use JasPer (such as Nautilus) to crash or, potentially, execute arbitrary code.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "jasper: heap buffer overflow flaws lead to arbitrary code execution (CERT VU#887409)",
          "title": "Vulnerability summary"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "6Server-RHEV-S-3.5:rhevm-spice-client-0:3.5-3.el6.src",
          "6Server-RHEV-S-3.5:rhevm-spice-client-x64-cab-0:3.5-3.el6.noarch",
          "6Server-RHEV-S-3.5:rhevm-spice-client-x64-msi-0:3.5-3.el6.noarch",
          "6Server-RHEV-S-3.5:rhevm-spice-client-x86-cab-0:3.5-3.el6.noarch",
          "6Server-RHEV-S-3.5:rhevm-spice-client-x86-msi-0:3.5-3.el6.noarch"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2011-4516"
        },
        {
          "category": "external",
          "summary": "RHBZ#747726",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=747726"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2011-4516",
          "url": "https://www.cve.org/CVERecord?id=CVE-2011-4516"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2011-4516",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2011-4516"
        }
      ],
      "release_date": "2011-12-08T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2015-03-18T12:11:46+00:00",
          "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
          "product_ids": [
            "6Server-RHEV-S-3.5:rhevm-spice-client-0:3.5-3.el6.src",
            "6Server-RHEV-S-3.5:rhevm-spice-client-x64-cab-0:3.5-3.el6.noarch",
            "6Server-RHEV-S-3.5:rhevm-spice-client-x64-msi-0:3.5-3.el6.noarch",
            "6Server-RHEV-S-3.5:rhevm-spice-client-x86-cab-0:3.5-3.el6.noarch",
            "6Server-RHEV-S-3.5:rhevm-spice-client-x86-msi-0:3.5-3.el6.noarch"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2015:0698"
        }
      ],
      "scores": [
        {
          "cvss_v2": {
            "accessComplexity": "MEDIUM",
            "accessVector": "NETWORK",
            "authentication": "NONE",
            "availabilityImpact": "PARTIAL",
            "baseScore": 6.8,
            "confidentialityImpact": "PARTIAL",
            "integrityImpact": "PARTIAL",
            "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P",
            "version": "2.0"
          },
          "products": [
            "6Server-RHEV-S-3.5:rhevm-spice-client-0:3.5-3.el6.src",
            "6Server-RHEV-S-3.5:rhevm-spice-client-x64-cab-0:3.5-3.el6.noarch",
            "6Server-RHEV-S-3.5:rhevm-spice-client-x64-msi-0:3.5-3.el6.noarch",
            "6Server-RHEV-S-3.5:rhevm-spice-client-x86-cab-0:3.5-3.el6.noarch",
            "6Server-RHEV-S-3.5:rhevm-spice-client-x86-msi-0:3.5-3.el6.noarch"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Important"
        }
      ],
      "title": "jasper: heap buffer overflow flaws lead to arbitrary code execution (CERT VU#887409)"
    },
    {
      "acknowledgments": [
        {
          "names": [
            "Jonathan Foote"
          ],
          "organization": "CERT Coordination Center"
        }
      ],
      "cve": "CVE-2011-4517",
      "cwe": {
        "id": "CWE-122",
        "name": "Heap-based Buffer Overflow"
      },
      "discovery_date": "2011-10-20T00:00:00+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "747726"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "A heap-based buffer overflow flaw was found in the way JasPer decoded JPEG 2000 compressed image files. An attacker could create a malicious JPEG 2000 compressed image file that, when opened, would cause applications that use JasPer (such as Nautilus) to crash or, potentially, execute arbitrary code.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "jasper: heap buffer overflow flaws lead to arbitrary code execution (CERT VU#887409)",
          "title": "Vulnerability summary"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "6Server-RHEV-S-3.5:rhevm-spice-client-0:3.5-3.el6.src",
          "6Server-RHEV-S-3.5:rhevm-spice-client-x64-cab-0:3.5-3.el6.noarch",
          "6Server-RHEV-S-3.5:rhevm-spice-client-x64-msi-0:3.5-3.el6.noarch",
          "6Server-RHEV-S-3.5:rhevm-spice-client-x86-cab-0:3.5-3.el6.noarch",
          "6Server-RHEV-S-3.5:rhevm-spice-client-x86-msi-0:3.5-3.el6.noarch"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2011-4517"
        },
        {
          "category": "external",
          "summary": "RHBZ#747726",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=747726"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2011-4517",
          "url": "https://www.cve.org/CVERecord?id=CVE-2011-4517"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2011-4517",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2011-4517"
        }
      ],
      "release_date": "2011-12-08T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2015-03-18T12:11:46+00:00",
          "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
          "product_ids": [
            "6Server-RHEV-S-3.5:rhevm-spice-client-0:3.5-3.el6.src",
            "6Server-RHEV-S-3.5:rhevm-spice-client-x64-cab-0:3.5-3.el6.noarch",
            "6Server-RHEV-S-3.5:rhevm-spice-client-x64-msi-0:3.5-3.el6.noarch",
            "6Server-RHEV-S-3.5:rhevm-spice-client-x86-cab-0:3.5-3.el6.noarch",
            "6Server-RHEV-S-3.5:rhevm-spice-client-x86-msi-0:3.5-3.el6.noarch"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2015:0698"
        }
      ],
      "scores": [
        {
          "cvss_v2": {
            "accessComplexity": "MEDIUM",
            "accessVector": "NETWORK",
            "authentication": "NONE",
            "availabilityImpact": "PARTIAL",
            "baseScore": 6.8,
            "confidentialityImpact": "PARTIAL",
            "integrityImpact": "PARTIAL",
            "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P",
            "version": "2.0"
          },
          "products": [
            "6Server-RHEV-S-3.5:rhevm-spice-client-0:3.5-3.el6.src",
            "6Server-RHEV-S-3.5:rhevm-spice-client-x64-cab-0:3.5-3.el6.noarch",
            "6Server-RHEV-S-3.5:rhevm-spice-client-x64-msi-0:3.5-3.el6.noarch",
            "6Server-RHEV-S-3.5:rhevm-spice-client-x86-cab-0:3.5-3.el6.noarch",
            "6Server-RHEV-S-3.5:rhevm-spice-client-x86-msi-0:3.5-3.el6.noarch"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Important"
        }
      ],
      "title": "jasper: heap buffer overflow flaws lead to arbitrary code execution (CERT VU#887409)"
    },
    {
      "acknowledgments": [
        {
          "names": [
            "oCERT"
          ]
        }
      ],
      "cve": "CVE-2014-8137",
      "cwe": {
        "id": "CWE-416",
        "name": "Use After Free"
      },
      "discovery_date": "2014-12-10T00:00:00+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "1173157"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "A double free flaw was found in the way JasPer parsed ICC color profiles in JPEG 2000 image files. A specially crafted file could cause an application using JasPer to crash or, possibly, execute arbitrary code.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "jasper: double-free in in jas_iccattrval_destroy() (oCERT-2014-012)",
          "title": "Vulnerability summary"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "6Server-RHEV-S-3.5:rhevm-spice-client-0:3.5-3.el6.src",
          "6Server-RHEV-S-3.5:rhevm-spice-client-x64-cab-0:3.5-3.el6.noarch",
          "6Server-RHEV-S-3.5:rhevm-spice-client-x64-msi-0:3.5-3.el6.noarch",
          "6Server-RHEV-S-3.5:rhevm-spice-client-x86-cab-0:3.5-3.el6.noarch",
          "6Server-RHEV-S-3.5:rhevm-spice-client-x86-msi-0:3.5-3.el6.noarch"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2014-8137"
        },
        {
          "category": "external",
          "summary": "RHBZ#1173157",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1173157"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2014-8137",
          "url": "https://www.cve.org/CVERecord?id=CVE-2014-8137"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2014-8137",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2014-8137"
        },
        {
          "category": "external",
          "summary": "http://www.ocert.org/advisories/ocert-2014-012.html",
          "url": "http://www.ocert.org/advisories/ocert-2014-012.html"
        }
      ],
      "release_date": "2014-12-18T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2015-03-18T12:11:46+00:00",
          "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
          "product_ids": [
            "6Server-RHEV-S-3.5:rhevm-spice-client-0:3.5-3.el6.src",
            "6Server-RHEV-S-3.5:rhevm-spice-client-x64-cab-0:3.5-3.el6.noarch",
            "6Server-RHEV-S-3.5:rhevm-spice-client-x64-msi-0:3.5-3.el6.noarch",
            "6Server-RHEV-S-3.5:rhevm-spice-client-x86-cab-0:3.5-3.el6.noarch",
            "6Server-RHEV-S-3.5:rhevm-spice-client-x86-msi-0:3.5-3.el6.noarch"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2015:0698"
        }
      ],
      "scores": [
        {
          "cvss_v2": {
            "accessComplexity": "HIGH",
            "accessVector": "NETWORK",
            "authentication": "NONE",
            "availabilityImpact": "PARTIAL",
            "baseScore": 5.1,
            "confidentialityImpact": "PARTIAL",
            "integrityImpact": "PARTIAL",
            "vectorString": "AV:N/AC:H/Au:N/C:P/I:P/A:P",
            "version": "2.0"
          },
          "products": [
            "6Server-RHEV-S-3.5:rhevm-spice-client-0:3.5-3.el6.src",
            "6Server-RHEV-S-3.5:rhevm-spice-client-x64-cab-0:3.5-3.el6.noarch",
            "6Server-RHEV-S-3.5:rhevm-spice-client-x64-msi-0:3.5-3.el6.noarch",
            "6Server-RHEV-S-3.5:rhevm-spice-client-x86-cab-0:3.5-3.el6.noarch",
            "6Server-RHEV-S-3.5:rhevm-spice-client-x86-msi-0:3.5-3.el6.noarch"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Low"
        }
      ],
      "title": "jasper: double-free in in jas_iccattrval_destroy() (oCERT-2014-012)"
    },
    {
      "acknowledgments": [
        {
          "names": [
            "oCERT"
          ]
        }
      ],
      "cve": "CVE-2014-8138",
      "cwe": {
        "id": "CWE-122",
        "name": "Heap-based Buffer Overflow"
      },
      "discovery_date": "2014-12-10T00:00:00+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "1173162"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "A heap-based buffer overflow flaw was found in the way JasPer decoded JPEG 2000 image files. A specially crafted file could cause an application using JasPer to crash or, possibly, execute arbitrary code.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "jasper: heap overflow in jp2_decode() (oCERT-2014-012)",
          "title": "Vulnerability summary"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "6Server-RHEV-S-3.5:rhevm-spice-client-0:3.5-3.el6.src",
          "6Server-RHEV-S-3.5:rhevm-spice-client-x64-cab-0:3.5-3.el6.noarch",
          "6Server-RHEV-S-3.5:rhevm-spice-client-x64-msi-0:3.5-3.el6.noarch",
          "6Server-RHEV-S-3.5:rhevm-spice-client-x86-cab-0:3.5-3.el6.noarch",
          "6Server-RHEV-S-3.5:rhevm-spice-client-x86-msi-0:3.5-3.el6.noarch"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2014-8138"
        },
        {
          "category": "external",
          "summary": "RHBZ#1173162",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1173162"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2014-8138",
          "url": "https://www.cve.org/CVERecord?id=CVE-2014-8138"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2014-8138",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2014-8138"
        },
        {
          "category": "external",
          "summary": "http://www.ocert.org/advisories/ocert-2014-012.html",
          "url": "http://www.ocert.org/advisories/ocert-2014-012.html"
        }
      ],
      "release_date": "2014-12-18T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2015-03-18T12:11:46+00:00",
          "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
          "product_ids": [
            "6Server-RHEV-S-3.5:rhevm-spice-client-0:3.5-3.el6.src",
            "6Server-RHEV-S-3.5:rhevm-spice-client-x64-cab-0:3.5-3.el6.noarch",
            "6Server-RHEV-S-3.5:rhevm-spice-client-x64-msi-0:3.5-3.el6.noarch",
            "6Server-RHEV-S-3.5:rhevm-spice-client-x86-cab-0:3.5-3.el6.noarch",
            "6Server-RHEV-S-3.5:rhevm-spice-client-x86-msi-0:3.5-3.el6.noarch"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2015:0698"
        }
      ],
      "scores": [
        {
          "cvss_v2": {
            "accessComplexity": "MEDIUM",
            "accessVector": "NETWORK",
            "authentication": "NONE",
            "availabilityImpact": "PARTIAL",
            "baseScore": 6.8,
            "confidentialityImpact": "PARTIAL",
            "integrityImpact": "PARTIAL",
            "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P",
            "version": "2.0"
          },
          "products": [
            "6Server-RHEV-S-3.5:rhevm-spice-client-0:3.5-3.el6.src",
            "6Server-RHEV-S-3.5:rhevm-spice-client-x64-cab-0:3.5-3.el6.noarch",
            "6Server-RHEV-S-3.5:rhevm-spice-client-x64-msi-0:3.5-3.el6.noarch",
            "6Server-RHEV-S-3.5:rhevm-spice-client-x86-cab-0:3.5-3.el6.noarch",
            "6Server-RHEV-S-3.5:rhevm-spice-client-x86-msi-0:3.5-3.el6.noarch"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Important"
        }
      ],
      "title": "jasper: heap overflow in jp2_decode() (oCERT-2014-012)"
    },
    {
      "acknowledgments": [
        {
          "names": [
            "oCERT"
          ]
        }
      ],
      "cve": "CVE-2014-8157",
      "cwe": {
        "id": "CWE-122",
        "name": "Heap-based Buffer Overflow"
      },
      "discovery_date": "2015-01-06T00:00:00+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "1179282"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "An off-by-one flaw, leading to a heap-based buffer overflow, was found in the way JasPer decoded JPEG 2000 image files. A specially crafted file could cause an application using JasPer to crash or, possibly, execute arbitrary code.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "jasper: dec-\u003enumtiles off-by-one check in jpc_dec_process_sot() (oCERT-2015-001)",
          "title": "Vulnerability summary"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "6Server-RHEV-S-3.5:rhevm-spice-client-0:3.5-3.el6.src",
          "6Server-RHEV-S-3.5:rhevm-spice-client-x64-cab-0:3.5-3.el6.noarch",
          "6Server-RHEV-S-3.5:rhevm-spice-client-x64-msi-0:3.5-3.el6.noarch",
          "6Server-RHEV-S-3.5:rhevm-spice-client-x86-cab-0:3.5-3.el6.noarch",
          "6Server-RHEV-S-3.5:rhevm-spice-client-x86-msi-0:3.5-3.el6.noarch"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2014-8157"
        },
        {
          "category": "external",
          "summary": "RHBZ#1179282",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1179282"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2014-8157",
          "url": "https://www.cve.org/CVERecord?id=CVE-2014-8157"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2014-8157",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2014-8157"
        },
        {
          "category": "external",
          "summary": "http://www.ocert.org/advisories/ocert-2015-001.html",
          "url": "http://www.ocert.org/advisories/ocert-2015-001.html"
        }
      ],
      "release_date": "2015-01-21T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2015-03-18T12:11:46+00:00",
          "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
          "product_ids": [
            "6Server-RHEV-S-3.5:rhevm-spice-client-0:3.5-3.el6.src",
            "6Server-RHEV-S-3.5:rhevm-spice-client-x64-cab-0:3.5-3.el6.noarch",
            "6Server-RHEV-S-3.5:rhevm-spice-client-x64-msi-0:3.5-3.el6.noarch",
            "6Server-RHEV-S-3.5:rhevm-spice-client-x86-cab-0:3.5-3.el6.noarch",
            "6Server-RHEV-S-3.5:rhevm-spice-client-x86-msi-0:3.5-3.el6.noarch"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2015:0698"
        }
      ],
      "scores": [
        {
          "cvss_v2": {
            "accessComplexity": "MEDIUM",
            "accessVector": "NETWORK",
            "authentication": "NONE",
            "availabilityImpact": "PARTIAL",
            "baseScore": 6.8,
            "confidentialityImpact": "PARTIAL",
            "integrityImpact": "PARTIAL",
            "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P",
            "version": "2.0"
          },
          "products": [
            "6Server-RHEV-S-3.5:rhevm-spice-client-0:3.5-3.el6.src",
            "6Server-RHEV-S-3.5:rhevm-spice-client-x64-cab-0:3.5-3.el6.noarch",
            "6Server-RHEV-S-3.5:rhevm-spice-client-x64-msi-0:3.5-3.el6.noarch",
            "6Server-RHEV-S-3.5:rhevm-spice-client-x86-cab-0:3.5-3.el6.noarch",
            "6Server-RHEV-S-3.5:rhevm-spice-client-x86-msi-0:3.5-3.el6.noarch"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Important"
        }
      ],
      "title": "jasper: dec-\u003enumtiles off-by-one check in jpc_dec_process_sot() (oCERT-2015-001)"
    },
    {
      "acknowledgments": [
        {
          "names": [
            "oCERT"
          ]
        }
      ],
      "cve": "CVE-2014-8158",
      "cwe": {
        "id": "CWE-770",
        "name": "Allocation of Resources Without Limits or Throttling"
      },
      "discovery_date": "2014-01-06T00:00:00+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "1179298"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "An unrestricted stack memory use flaw was found in the way JasPer decoded JPEG 2000 image files. A specially crafted file could cause an application using JasPer to crash or, possibly, execute arbitrary code.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "jasper: unrestricted stack memory use in jpc_qmfb.c (oCERT-2015-001)",
          "title": "Vulnerability summary"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "6Server-RHEV-S-3.5:rhevm-spice-client-0:3.5-3.el6.src",
          "6Server-RHEV-S-3.5:rhevm-spice-client-x64-cab-0:3.5-3.el6.noarch",
          "6Server-RHEV-S-3.5:rhevm-spice-client-x64-msi-0:3.5-3.el6.noarch",
          "6Server-RHEV-S-3.5:rhevm-spice-client-x86-cab-0:3.5-3.el6.noarch",
          "6Server-RHEV-S-3.5:rhevm-spice-client-x86-msi-0:3.5-3.el6.noarch"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2014-8158"
        },
        {
          "category": "external",
          "summary": "RHBZ#1179298",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1179298"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2014-8158",
          "url": "https://www.cve.org/CVERecord?id=CVE-2014-8158"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2014-8158",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2014-8158"
        },
        {
          "category": "external",
          "summary": "http://www.ocert.org/advisories/ocert-2015-001.html",
          "url": "http://www.ocert.org/advisories/ocert-2015-001.html"
        }
      ],
      "release_date": "2015-01-21T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2015-03-18T12:11:46+00:00",
          "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
          "product_ids": [
            "6Server-RHEV-S-3.5:rhevm-spice-client-0:3.5-3.el6.src",
            "6Server-RHEV-S-3.5:rhevm-spice-client-x64-cab-0:3.5-3.el6.noarch",
            "6Server-RHEV-S-3.5:rhevm-spice-client-x64-msi-0:3.5-3.el6.noarch",
            "6Server-RHEV-S-3.5:rhevm-spice-client-x86-cab-0:3.5-3.el6.noarch",
            "6Server-RHEV-S-3.5:rhevm-spice-client-x86-msi-0:3.5-3.el6.noarch"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2015:0698"
        }
      ],
      "scores": [
        {
          "cvss_v2": {
            "accessComplexity": "HIGH",
            "accessVector": "NETWORK",
            "authentication": "NONE",
            "availabilityImpact": "PARTIAL",
            "baseScore": 5.1,
            "confidentialityImpact": "PARTIAL",
            "integrityImpact": "PARTIAL",
            "vectorString": "AV:N/AC:H/Au:N/C:P/I:P/A:P",
            "version": "2.0"
          },
          "products": [
            "6Server-RHEV-S-3.5:rhevm-spice-client-0:3.5-3.el6.src",
            "6Server-RHEV-S-3.5:rhevm-spice-client-x64-cab-0:3.5-3.el6.noarch",
            "6Server-RHEV-S-3.5:rhevm-spice-client-x64-msi-0:3.5-3.el6.noarch",
            "6Server-RHEV-S-3.5:rhevm-spice-client-x86-cab-0:3.5-3.el6.noarch",
            "6Server-RHEV-S-3.5:rhevm-spice-client-x86-msi-0:3.5-3.el6.noarch"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Moderate"
        }
      ],
      "title": "jasper: unrestricted stack memory use in jpc_qmfb.c (oCERT-2015-001)"
    },
    {
      "acknowledgments": [
        {
          "names": [
            "oCERT"
          ]
        }
      ],
      "cve": "CVE-2014-9029",
      "cwe": {
        "id": "CWE-122",
        "name": "Heap-based Buffer Overflow"
      },
      "discovery_date": "2014-11-20T00:00:00+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "1167537"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "Multiple off-by-one flaws, leading to heap-based buffer overflows, were found in the way JasPer decoded JPEG 2000 files. A specially crafted file could cause an application using JasPer to crash or, possibly, execute arbitrary code.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "jasper: incorrect component number check in COC, RGN and QCC marker segment decoders (oCERT-2014-009)",
          "title": "Vulnerability summary"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "6Server-RHEV-S-3.5:rhevm-spice-client-0:3.5-3.el6.src",
          "6Server-RHEV-S-3.5:rhevm-spice-client-x64-cab-0:3.5-3.el6.noarch",
          "6Server-RHEV-S-3.5:rhevm-spice-client-x64-msi-0:3.5-3.el6.noarch",
          "6Server-RHEV-S-3.5:rhevm-spice-client-x86-cab-0:3.5-3.el6.noarch",
          "6Server-RHEV-S-3.5:rhevm-spice-client-x86-msi-0:3.5-3.el6.noarch"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2014-9029"
        },
        {
          "category": "external",
          "summary": "RHBZ#1167537",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1167537"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2014-9029",
          "url": "https://www.cve.org/CVERecord?id=CVE-2014-9029"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2014-9029",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2014-9029"
        },
        {
          "category": "external",
          "summary": "http://www.ocert.org/advisories/ocert-2014-009.html",
          "url": "http://www.ocert.org/advisories/ocert-2014-009.html"
        }
      ],
      "release_date": "2014-12-04T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2015-03-18T12:11:46+00:00",
          "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
          "product_ids": [
            "6Server-RHEV-S-3.5:rhevm-spice-client-0:3.5-3.el6.src",
            "6Server-RHEV-S-3.5:rhevm-spice-client-x64-cab-0:3.5-3.el6.noarch",
            "6Server-RHEV-S-3.5:rhevm-spice-client-x64-msi-0:3.5-3.el6.noarch",
            "6Server-RHEV-S-3.5:rhevm-spice-client-x86-cab-0:3.5-3.el6.noarch",
            "6Server-RHEV-S-3.5:rhevm-spice-client-x86-msi-0:3.5-3.el6.noarch"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2015:0698"
        }
      ],
      "scores": [
        {
          "cvss_v2": {
            "accessComplexity": "MEDIUM",
            "accessVector": "NETWORK",
            "authentication": "NONE",
            "availabilityImpact": "PARTIAL",
            "baseScore": 6.8,
            "confidentialityImpact": "PARTIAL",
            "integrityImpact": "PARTIAL",
            "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P",
            "version": "2.0"
          },
          "products": [
            "6Server-RHEV-S-3.5:rhevm-spice-client-0:3.5-3.el6.src",
            "6Server-RHEV-S-3.5:rhevm-spice-client-x64-cab-0:3.5-3.el6.noarch",
            "6Server-RHEV-S-3.5:rhevm-spice-client-x64-msi-0:3.5-3.el6.noarch",
            "6Server-RHEV-S-3.5:rhevm-spice-client-x86-cab-0:3.5-3.el6.noarch",
            "6Server-RHEV-S-3.5:rhevm-spice-client-x86-msi-0:3.5-3.el6.noarch"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Important"
        }
      ],
      "title": "jasper: incorrect component number check in COC, RGN and QCC marker segment decoders (oCERT-2014-009)"
    }
  ]
}

Sightings

Author	Source	Type	Date	Other

Nomenclature

Seen: The vulnerability was mentioned, discussed, or observed by the user.
Confirmed: The vulnerability has been validated from an analyst's perspective.
Published Proof of Concept: A public proof of concept is available for this vulnerability.
Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
Not confirmed: The user expressed doubt about the validity of the vulnerability.
Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.

Detection rules are retrieved from Rulezet.

Action not permitted

CVE-2011-4517 (GCVE-0-2011-4517)

RHSA-2015:0698

RHSA-2015_0698

Tags

Sightings

Nomenclature